55 matches found
EUVD-2013-6209
Malware in sbrugna...
EUVD-2019-0027
Malware in sbrugna...
RHSA-2014:1050 Red Hat Security Advisory: openstack-ceilometer security and bug fix update
Bulletin has no description...
RHSA-2019:0919 Red Hat Security Advisory: openstack-ceilometer security update
Bulletin has no description...
RHSA-2019:0580 Red Hat Security Advisory: openstack-ceilometer security and bug fix update
Bulletin has no description...
RHSA-2019:0566 Red Hat Security Advisory: openstack-ceilometer security and bug fix update
Bulletin has no description...
RHEL 7 : openstack-ceilometer (RHSA-2019:0566)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0566 advisory. OpenStack Telemetry ceilometer collects customer usage data for metering purposes. Telemetry implements bus listener, push, and polling agents for da...
RHEL 7 : openstack-ceilometer (RHSA-2019:0919)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0919 advisory. OpenStack Telemetry ceilometer collects customer usage data for metering purposes. Telemetry implements bus listener, push, and polling agents for da...
RHEL 7 : openstack-ceilometer (RHSA-2019:0580)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0580 advisory. OpenStack Telemetry ceilometer collects customer usage data for metering purposes. Telemetry implements bus listener, push, and polling agents for da...
SUSE CVE-2013-6384
1 impldb2.py and 2 implmongodb.py in OpenStack Ceilometer 2013.2 and earlier, when the logging level is set to INFO, logs the connection string from ceilometer.conf, which allows local users to obtain sensitive information the DB2 or MongoDB password by reading the log file...
SUSE CVE-2019-3830
A vulnerability was found in ceilometer before version 12.0.0.0rc1. An Information Exposure in ceilometer-agent prints sensitive configuration data to log files without DEBUG logging being activated...
keystonemiddleware (=1.3.2), python-ceilometerclient (=1.0.15) +3 more potentially affected by CVE-2014-7144 via python-keystoneclient (>=1.1.0 <=1.1.1)
python-keystoneclient PYPI version =1.1.0, =0.9.4, =0.9.9 - python-neutronclient =2.3.12 Source cves: CVE-2014-7144 Source advisory: OSV:GHSA-7F2C-VP52-GMFW...
keystonemiddleware (>=1.3.2 <=1.5.3), python-ceilometerclient (>=1.0.14 <=1.1.2) +7 more potentially affected by CVE-2015-1852 via python-keystoneclient (>=1.1.0 <=1.3.4)
python-keystoneclient PYPI version =1.1.0, =1.3.2, =1.0.14, =1.1.2, =0.14.3, =0.9.4, =0.5.8, =2.23.2, =1.0.4, =1.0.5 Source cves: CVE-2015-1852 Source advisory: OSV:GHSA-P9WQ-MJH8-Q72M...
GHSA-2CVF-R9JM-4QM9 Ceilometer Prints Sensitive Configuration Data to Log
A vulnerability was found in ceilometer before version 12.0.0.0rc1. An Information Exposure in ceilometer-agent prints sensitive configuration data to log files without DEBUG logging being activated...
Ceilometer Prints Sensitive Configuration Data to Log
A vulnerability was found in ceilometer before version 12.0.0.0rc1. An Information Exposure in ceilometer-agent prints sensitive configuration data to log files without DEBUG logging being activated...
Important: Red Hat Security Advisory: Service Telemetry Framework 1.3 (sg-core-container) security update
An update for sg-core-container is now available for Service Telemetry Framework 1.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
SUSE-SU-2019:1862-1 Security update for ardana and crowbar
This update for ardana and crowbar fixes the following issues: - Restrict rootwrap directories for cinder bsc1132542 - Change Cinder default log level from DEBUG to INFO SCRD-7132 - Remove configuration from migration bsc1126391 - Configurable innodb flush options SCRD-7496 - Secure designate's...
openstack-ceilometer: ceilometer-agent prints sensitive data from config files through log files
A vulnerability was found in ceilometer where administrative credentials were permanently stored in the log. A user with access to the logs could obtain these credentials and escalate their privileges...
Low: Red Hat Security Advisory: openstack-ceilometer security update
An update for openstack-ceilometer is now available for Red Hat OpenStack Platform 10.0 Newton. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2019-3830
A vulnerability was found in ceilometer before version 12.0.0.0rc1. An Information Exposure in ceilometer-agent prints sensitive configuration data to log files without DEBUG logging being activated...