7743 matches found
RHEL 8 : Red Hat OpenStack Platform 16.2 (openstack-ironic) (RHSA-2025:0204)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:0204 advisory. Ironic is a project which aims to provision bare metal as opposed to virtual machines by leveraging common technologies such as PXE boot and IPMI to...
RHEL 8 : Red Hat OpenStack Platform 16.2 (python-waitress) (RHSA-2025:0201)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:0201 advisory. Pure-python WSGI server Security Fixes: python-waitress: request processing race condition in HTTP pipelining with invalid first request...
RHEL 8 : Red Hat OpenStack Platform 16.2 (etcd) (RHSA-2025:0203)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:0203 advisory. A highly-available key value store for shared configuration Security Fixes: golang: Calling Decoder.Decode on a message which contains deeply nested...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (osp-director-operator) security update
An update for osp-director-operator-container is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHSA-2024:10696 Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (python-werkzeug) security update
Bulletin has no description...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (python-werkzeug) security update
An update for python-werkzeug is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
RHEL 8 : Red Hat OpenStack Platform 16.2 (python-werkzeug) (RHSA-2024:10696)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:10696 advisory. Werkzeug is a WSGI utility module. It includes a debugger, request and response objects, HTTP utilities to handle entity tags, cache control headers...
CVE-2024-53916
A flaw was found in OpenStack Neutron. The service tagging policy engine insufficiently verifies the parent resource or the upper parent resource project ID when checking the policies against the caller project ID...
RHSA-2024:9977 Red Hat Security Advisory: RHOSP 17.1.4 (python-zipp) security update
Bulletin has no description...
RHSA-2024:9991 Red Hat Security Advisory: RHOSP 17.1.4 (openstack-tripleo-common and python-tripleoclient) security update
Bulletin has no description...
RHSA-2024:9990 Red Hat Security Advisory: RHOSP 17.1.4 (openstack-tripleo-common and python-tripleoclient) security update
Bulletin has no description...
RHSA-2024:9982 Red Hat Security Advisory: RHOSP 17.1.4 (openstack-ironic) security update
Bulletin has no description...
RHSA-2024:9978 Red Hat Security Advisory: RHOSP 17.1.4 (openstack-tripleo-heat-templates) security update
Bulletin has no description...
RHSA-2024:9989 Red Hat Security Advisory: RHOSP 17.1.4 (python-webob) security update
Bulletin has no description...
GHSA-F27H-G923-68HW OpenStack Neutron can use an incorrect ID during policy enforcement
In OpenStack Neutron before 25.0.1, neutron/extensions/tagging.py can use an incorrect ID during policy enforcement. It does not apply the proper policy check for changing network tags. An unprivileged tenant is able to change add and clear tags on network objects that do not belong to the tenant...
OpenStack Neutron can use an incorrect ID during policy enforcement
In OpenStack Neutron before 25.0.1, neutron/extensions/tagging.py can use an incorrect ID during policy enforcement. It does not apply the proper policy check for changing network tags. An unprivileged tenant is able to change add and clear tags on network objects that do not belong to the tenant...
DEBIAN-CVE-2024-53916
In OpenStack Neutron before 25.0.1, neutron/extensions/tagging.py can use an incorrect ID during policy enforcement. It does not apply the proper policy check for changing network tags. An unprivileged tenant is able to change add and clear tags on network objects that do not belong to the tenant...
CVE-2024-53916
In OpenStack Neutron before 25.0.1, neutron/extensions/tagging.py can use an incorrect ID during policy enforcement. It does not apply the proper policy check for changing network tags. An unprivileged tenant is able to change add and clear tags on network objects that do not belong to the tenant...
CVE-2024-53916
In OpenStack Neutron before 25.0.1, neutron/extensions/tagging.py can use an incorrect ID during policy enforcement. It does not apply the proper policy check for changing network tags. An unprivileged tenant is able to change add and clear tags on network objects that do not belong to the tenant...
CVE-2024-53916
In OpenStack Neutron before 25.0.1, neutron/extensions/tagging.py can use an incorrect ID during policy enforcement. It does not apply the proper policy check for changing network tags. An unprivileged tenant is able to change add and clear tags on network objects that do not belong to the tenant...