Denial Of Service (DoS)

openstack-neutron is vulnerable to Denial of Service DoS attacks. A remote authenticated user is able to cause uncontrolled resource consumption via submitting a significant number of requests, resulting in denial of service conditions...

Debian dla-3281 : python-swift - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3281 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3281-1 [email protected] https://www.debian.org/lts/security/...

OpenStack 路径遍历漏洞

OpenStack is a cloud platform management program of the National Aeronautics and Space Administration NASA. A security vulnerability exists in OpenStack Cinder, glance, and nova, which stems from the fact that by providing a specially created VMDK flat image that references the path to a specific...

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (openstack-neutron) (RHSA-2022:8870)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8870 advisory. OpenStack Networking neutron is a virtual network service for OpenStack. Just as OpenStack Compute nova provides an API to dynamically request and...

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (rabbitmq-server) (RHSA-2022:8867)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8867 advisory. RabbitMQ is an implementation of AMQP, the emerging standard for high performance enterprise messaging. The RabbitMQ server is a robust and scalable...

RHEL 8 : openstack-selinux (RHSA-2020:4381)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:4381 advisory. The openstack-selinux package is a collection of SELinux policies for running OpenStack on Red Hat Enterprise Linux. Security Fixes: policy flaw allo...

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (protobuf) (RHSA-2022:8860)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8860 advisory. Security Fixes: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference CVE-2021-22570 For more details about the security...

RHEL 8 : Red Hat OpenStack Platform 16.2.4 (python-XStatic-Angular) (RHSA-2022:8849)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8849 advisory. Angular JavaScript library packaged for setuptools easyinstall / pip. Security Fixes: Prototype pollution in merge function could result in code...

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (python-scciclient) (RHSA-2022:8868)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8868 advisory. Python ServerView Common Command Interface SCCI Client Library Security Fixes: missing server certificate verification CVE-2022-2996 For more details...

RHEL 8 : Red Hat OpenStack Platform 16.2.4 (python-django20) (RHSA-2022:8853)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8853 advisory. Security Fixes: Possible XSS via '% debug %' template tag CVE-2022-22818 Denial of service possibility in file uploads CVE-2022-23833 For mo...

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (numpy) (RHSA-2022:8861)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8861 advisory. A fast multidimensional array facility for Python Security Fixes: NULL pointer dereference in numpy.sort in the PyArrayDescrNew due to missing...

RHEL 7 : Red Hat OpenStack Platform 13.0 (instack-undercloud) (RHSA-2022:8897)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8897 advisory. Installation tools to install an undercloud via instack Security Fixes: instack-undercloud: rsync leaks information to undercloud CVE-2022-3596 For...

SUSE: Security Advisory (SUSE-SU-2023:0111-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2023:0118-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 8 : Red Hat OpenStack Platform 16.2.4 (erlang) (RHSA-2022:8857)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8857 advisory. Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault...

SUSE: Security Advisory (SUSE-SU-2023:0109-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 8 : Red Hat OpenStack Platform 16.2.4 (puppet) (RHSA-2022:8846)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8846 advisory. Puppet lets you centrally manage every important aspect of your system using a cross-platform specification language that manages all the separate...

RHEL 8 : Red Hat OpenStack Platform 16.2.4 (protobuf) (RHSA-2022:8847)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8847 advisory. Protocol Buffers are a way of encoding structured data in an efficient yet extensible format. Google uses Protocol Buffers for almost all of its...

RHEL 8 : Red Hat OpenStack 16.2.4 (python-XStatic-Bootstrap-SCSS) (RHSA-2022:8848)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8848 advisory. Bootstrap style library packaged for setuptools easyinstall / pip. Security Fixes: XSS in the tooltip or popover data-template attribute CVE-2019-833...

RHEL 8 : Red Hat OpenStack 16.1.9 (openstack-tripleo-heat-templates) (RHSA-2022:8796)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8796 advisory. Heat templates for TripleO Security Fixes: data leak of internal URL through keystoneauthtoken CVE-2021-4180 Other fixes: Before this update, NTP...