SUSE CVE-2022-44020

An issue was discovered in OpenStack Sushy-Tools through 0.21.0 and VirtualBMC through 2.2.2. Changing the boot device configuration with these packages removes password protection from the managed libvirt XML domain. NOTE: this only affects an "unsupported, production-like configuration."...

PT-2022-27083 · Openstack · Openstack Sushy-Tools

Name of the Vulnerable Software and Affected Versions: OpenStack Sushy-Tools versions 0.21.0 and earlier VirtualBMC versions 2.2.2 and earlier Description: An issue was discovered where changing the boot device configuration with the affected packages removes password protection from the managed...