PYSEC-2020-243

An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths ...

CVE-2020-17376

CVE-2020-17376 : In OpenStack Nova, a vulnerability in Guest.migrate (virt/libvirt/guest.py) allows a user to access destination-host devices that share paths with source-host devices after performing a soft reboot of an instance that has previously undergone live migration. Affected are OpenStac...

CVE-2020-17376

An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths ...

CVE-2020-17376

An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths ...

Security Bulletin: Openstack Keystone vulnerabilities affects IBM Spectrum Scale (CVE-2020-12689)

Summary IBM Spectrum Scale, shipped with Openstack keystone, is exposed to vulnerabilities as detailed below. Vulnerability Details CVEID: CVE-2020-12689 DESCRIPTION: OpenStack Keystone could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper...

PT-2020-14931 · Openstack +3 · Openstack Nova +3

Name of the Vulnerable Software and Affected Versions: OpenStack Nova versions prior to 19.3.1 OpenStack Nova versions 20.x prior to 20.3.1 OpenStack Nova version 21.0.0 Description: An issue was discovered in the Guest.migrate function in virt/libvirt/guest.py. By performing a soft reboot of an...

CVE-2020-17376

An information disclosure flaw was found in the live migration feature of OpenStack Nova. A user may gain access to destination host devices with the same path as those on the source host. This flaw allows an attacker to perform a soft reboot of an instance that has previously undergone live...

Important: Red Hat Security Advisory: python-paunch and openstack-tripleo-heat-templates security update

An update for python-paunch and openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 15 Stein. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...

openstack-tripleo-heat-templates: No sVirt protection for OSP16 VMs due to disabled SELinux

A flaw was found in the novalibvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines...

Important: Red Hat Security Advisory: python-paunch and openstack-tripleo-heat-templates security update

An update for python-paunch and openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 16.0 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

openstack-tripleo-heat-templates: No sVirt protection for OSP16 VMs due to disabled SELinux

A flaw was found in the novalibvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines...

CVE-2020-9079

FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An attacker has to find a way to exploit the vulnerability to conduct directed attacks against the affected product...

CVE-2020-9079

FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An attacker has to find a way to exploit the vulnerability to conduct directed attacks against the affected product...

Design/Logic Flaw

FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An attacker has to find a way to exploit the vulnerability to conduct directed attacks against the affected product...

CVE-2020-9079

Huawei FusionSphere OpenStack 8.0.0 has a protection mechanism failure vulnerability (CVE-2020-9079) due to incorrect use of a protection mechanism. The NVD entry lists a high impact (CVSSv3.1 base score 8.8) with adjacent access, no privileges required, and high impacts to confidentiality, integ...

CVE-2020-9079

FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An attacker has to find a way to exploit the vulnerability to conduct directed attacks against the affected product...

RHEL 8 : python-paunch and openstack-tripleo-heat-templates (RHSA-2020:3406)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3406 advisory. Library and utility to launch and manage containers using YAML based configuration data. openstack-tripleo-heat-templates is a collection of OpenStac...

RHEL 8 : python-paunch and openstack-tripleo-heat-templates (RHSA-2020:3410)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3410 advisory. Library and utility to launch and manage containers using YAML based configuration data. openstack-tripleo-heat-templates is a collection of OpenStac...

SUSE-RU-2020:2161-1 Security update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-designate, openstack-heat-templates, openstack-ironic, openstack-keystone, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-neutron, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, python-Django1, python-Pillow, python-ardana-packager, python-heatclient, python-neutron-tempest-plugin, python-octavia-tempest-plugin, python-os-brick, python-oslo.messaging, python-pyroute2, python-urllib3, python-waitress, release-notes-suse-openstack-cloud, rubygem-activeresource, rubygem-json-1_7, rubygem-puma

This update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer,...

Huawei FusionSphere OpenStack Protection Mechanism Failure Vulnerability

Huawei FusionSphere OpenStack is an OpenStack-based cloud operating system from Huawei, China. A security vulnerability exists in Huawei FusionSphere OpenStack version 8.0.0, which stems from the program incorrectly using a protection mechanism. An attacker could exploit the vulnerability to...