Cisco Enterprise NFV Infrastructure Software 输入验证错误漏洞

Cisco Enterprise NFV Infrastructure Software is a set of NVF infrastructure software platform from Cisco USA. The platform enables full lifecycle management of virtualization services through a central orchestrator and controller.Cisco Enterprise NFV Infrastructure Software is vulnerable to a...

Design/Logic Flaw

A flaw was found in foreman before version 1.15 in the logging of adding and registering images. An attacker with access to the foreman log file would be able to view passwords for provisioned systems in the log file, allowing them to access those systems...

Moderate: Red Hat Security Advisory: openstack-glance security and bug fix update

Updated openstack-glance packages that fix one security issues and multiple bugs are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base scor...

[SECURITY] Fedora 19 Update: heat-jeos-9-1.fc19

This is a project for creating Just Enough Operating System images for heat. This project supports the following features: - Creates TDL files for use with oz - Creates compressed qcow2 files for use with libvirt/glance - Registers image files with glance...

Fedora Update for heat-jeos FEDORA-2013-9708

Check for the Version of heat-jeos OpenVAS Vulnerability Test Fedora Update for heat-jeos FEDORA-2013-9708 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

[SECURITY] Fedora 18 Update: heat-jeos-9-1.fc18

This is a project for creating Just Enough Operating System images for heat. This project supports the following features: - Creates TDL files for use with oz - Creates compressed qcow2 files for use with libvirt/glance - Registers image files with glance...

[SECURITY] Fedora 18 Update: openstack-glance-2012.2.3-1.fc18

OpenStack Image Service code-named Glance provides discovery, registratio n, and delivery services for virtual disk images. The Image Service API server provides a standard REST interface for querying information about virtual d isk images stored in a variety of back-end stores, including OpenSta...

Ubuntu: Security Advisory (USN-1305-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2011-4596

Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted 1 tarball or 2 manifest...

Directory traversal

Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted 1 tarball or 2 manifest...

Ubuntu 11.10 : nova vulnerability (USN-1305-1)

David Black discovered that Nova did not properly perform input validation during image registration. An attacker could exploit this by registering a crafted image using the EC2 API or S3/RegisterImage method and overwrite files as the nova user. Note that Tenable Network Security has extracted t...

CVE-2011-4596

Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted 1 tarball or 2 manifest...