3 matches found
CVE-2015-7945
The RESTful control interface aka RAPI or ganeti-rapi in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2 allows remote attackers to obtain the DRBD secret via instance information job resul...
CVE-2015-7945
The CVE-2015-7945 entry describes a vulnerability in Ganeti’s RESTful control interface (RAPI/ganeti-rapi) affecting multiple release streams: 2.9.x prior to 2.9.7, 2.10.x prior to 2.10.8, 2.11.x prior to 2.11.8, 2.12.x prior to 2.12.6, 2.13.x prior to 2.13.3, 2.14.x prior to 2.14.2, and 2.15.x p...
Debian Security Advisory DSA 3431-1 (ganeti - security update)
Pierre Kim discovered two vulnerabilities in the restful API of Ganeti, a virtual server cluster management tool. SSL parameter negotiation could result in denial of service and the DRBD secret could leak. OpenVAS Vulnerability Test $Id: deb3431.nasl 7045 2017-09-01 12:49:31Z asteins $...