12 matches found
RHEL 7 / 8 : Red Hat OpenStack Platform (openstack-swift) (RHSA-2023:1277)
The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1277 advisory. OpenStack Object Storage swift aggregates commodity servers to work together in clusters for reliable, redundant, and large-scale storage of stat...
Security Bulletin: A vulnerability in OpenStack Swift affects IBM Storage Scale environments with the S3 capability of Object protocol enabled (CVE-2022-47950)
Summary IBM Storage Scale, shipped with OpenStack Swift, is exposed to vulnerabilities as detailed below. The exposure to this vulnerability only exists if the Object protocol has been configured with S3 enabled. Vulnerability Details CVEID:CVE-2022-47950 DESCRIPTION: OpenStack Swift could allow ...
SUSE-SU-2023:2378-1 Security update for openstack-heat, openstack-swift, python-Werkzeug
This update for openstack-heat, openstack-swift, python-Werkzeug contains the following fixes: Security fixes included in this update: openstack-heat: - CVE-2023-1625: Fixed an issue where parameter values marked as 'hidden' would be shown in the stack's environment bsc1209774. openstack-swift: -...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.0 (openstack-swift) security update
An update for openstack-swift is now available for Red Hat OpenStack Platform 17.0 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Ubuntu: Security Advisory (USN-5852-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:0323-1 Security update for python-swift3
This update for python-swift3 fixes the following issues: - CVE-2022-47950: Fixed an issue that could allow a remote attacker to disclose local file contents via a crafted XML file bsc1207035...
Debian: Security Advisory (DSA-5327-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-3281-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-5327-1 : swift - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5327 advisory. Sebastien Meriot discovered that the S3 API of Swift, a distributed virtual object store, was susceptible to information disclosure. For the stable distribution bullseye,...
[SECURITY] [DLA 3281-1] swift security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-3281-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta January 25, 2023 https://wiki.debian.org/LTS -...
DEBIAN-CVE-2022-47950
An issue was discovered in OpenStack Swift before 2.28.1, 2.29.x before 2.29.2, and 2.30.0. By supplying crafted XML files, an authenticated user may coerce the S3 API into returning arbitrary file contents from the host server, resulting in unauthorized read access to potentially sensitive data...
CVE-2022-47950
An issue was discovered in OpenStack Swift before 2.28.1, 2.29.x before 2.29.2, and 2.30.0. By supplying crafted XML files, an authenticated user may coerce the S3 API into returning arbitrary file contents from the host server, resulting in unauthorized read access to potentially sensitive data...