37 matches found
EUVD-2017-11782
Malware in sbrugna...
EUVD-2015-5272
Malware in sbrugna...
EUVD-2013-6238
Malware in sbrugna...
EUVD-2022-3128
Malicious code in bioql PyPI...
RHEL 6 : openstack-heat and security advisory (Moderate) (RHSA-2016:0440)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:0440 advisory. OpenStack Orchestration heat is a template-driven engine used to specify and deploy configurations for Compute, Storage, and OpenStack Networking. It...
RHEL 6 : openstack-heat-templates (RHSA-2014:0579)
The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2014:0579 advisory. OpenStack Orchestration heat is a template-driven engine used to specify and deploy configurations for Compute, Storage, and OpenStack...
Moderate: Red Hat Security Advisory: openstack-tripleo-heat-templates and tripleo-ansible update
An update for openstack-tripleo-heat-templates and tripleo-ansible is now available for Red Hat OpenStack Platform 17.1 for RHEL 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
Important: Red Hat Security Advisory: python-paunch and openstack-tripleo-heat-templates security update
An update for python-paunch and openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 16.0 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
Authentication Bypass
The openstack-heat packages provide heat, a Python implementation of the OpenStack Orchestration engine, to launch multiple composite cloud applications based on templates. It was found that heat did not properly enforce cloudformation-compatible API policy rules. An in-instance attacker could us...
Denial Of Service (DoS)
openstack-heat is vulnerable to denial of service DoS attacks. The vulnerability exists as the template-validate command in OpenStack Orchestration API Heat before 2015.1.3 kilo and 5.0.x before 5.0.1 liberty allows remote authenticated users to cause a denial of service memory consumption or...
CVE-2017-2621
An access-control flaw was found in the OpenStack Orchestration heat service before 8.0.0, 6.1.0 and 7.0.2 where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...
Design/Logic Flaw
An access-control flaw was found in the OpenStack Orchestration heat service before 8.0.0, 6.1.0 and 7.0.2 where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...
CVE-2017-2621
An access-control flaw was found in the OpenStack Orchestration heat service before 8.0.0, 6.1.0 and 7.0.2 where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...
PT-2018-7142 · Openstack · Openstack Orchestration (Heat) Service
Name of the Vulnerable Software and Affected Versions: OpenStack Orchestration heat service versions prior to 8.0.0 OpenStack Orchestration heat service version 6.1.0 OpenStack Orchestration heat service version 7.0.2 Description: An access-control flaw was found in the OpenStack Orchestration he...
Moderate: Red Hat Security Advisory: openstack-heat security and bug fix update
An update for openstack-heat is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Low: Red Hat Security Advisory: openstack-heat security and bug fix update
An update for openstack-heat is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Low: Red Hat Security Advisory: openstack-heat security and bug fix update
An update for openstack-heat is now available for Red Hat OpenStack Platform 8.0 Liberty. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: openstack-heat security, bug fix, and enhancement update
An update for openstack-heat is now available for Red Hat OpenStack Platform 10.0 Newton. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: openstack-heat bug fix and security advisory
Updated OpenStack Orchestration packages that fix one security issue and two bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 Icehouse for RHEL 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS...
Moderate: Red Hat Security Advisory: openstack-heat security advisory
Updated OpenStack Orchestration packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, whic...