RHEL 6 : python-glanceclient (RHSA-2013:1200)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2013:1200 advisory. The python-glanceclient package provides a client for the OpenStack Glance API. It was discovered that the Python Glance client did not properly chec...

RHSA-2013:1200 Red Hat Security Advisory: python-glanceclient security update

Bulletin has no description...

Preverify_ok Value Incorrectly Checked

python-glanceclient is vulnerable to man-in-the-middle MitM attacks. This vulnerability is due to the fact that the preverifyok value is not correctly checked. This prevents the hostname from being validated with a domain name in the Common Name or SubjectAltName field of the X.509 certificate,...

SUSE-SU-2015:1434-1 Security update for python modules

This update provides the following fixes for various python-modules: - python-openstackclient: + Fix image create location attribute bnc932270 - python-novaclient: + Update novaclient shell to use shared arguments from Session + Support using the Keystone V3 API from the Nova CLI -...

keystonemiddleware (>=1.3.2 <=1.5.3), python-ceilometerclient (>=1.0.14 <=1.1.2) +7 more potentially affected by CVE-2015-1852 via python-keystoneclient (>=1.1.0 <=1.3.4)

python-keystoneclient PYPI version =1.1.0, =1.3.2, =1.0.14, =1.1.2, =0.14.3, =0.9.4, =0.5.8, =2.23.2, =1.0.4, =1.0.5 Source cves: CVE-2015-1852 Source advisory: OSV:PYSEC-2015-31...

Fedora Update for python-glanceclient FEDORA-2013-14814

Check for the Version of python-glanceclient OpenVAS Vulnerability Test Fedora Update for python-glanceclient FEDORA-2013-14814 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/...

Fedora Update for python-glanceclient FEDORA-2013-14814

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 19 : python-glanceclient-0.9.0-3.fc19 (2013-14814)

Fix SSL certificate CNAME checking. Fixes CVE-2013-4111 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Ubuntu: Security Advisory (USN-2004-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for python-glanceclient USN-2004-1

Check for the Version of python-glanceclient OpenVAS Vulnerability Test $Id: gbubuntuUSN20041.nasl 8526 2018-01-25 06:57:37Z teissa $ Ubuntu Update for python-glanceclient USN-2004-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This...

[USN-2004-1] python-glanceclient vulnerability

========================================================================== Ubuntu Security Notice USN-2004-1 October 23, 2013 python-glanceclient vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

Ubuntu 13.04 : python-glanceclient vulnerability (USN-2004-1)

Thomas Leaman discovered that the Python client library for Glance did not properly verify SSL certificates. A remote attacker could exploit this to perform a man in the middle attack. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu securi...

USN-2004-1: python-glanceclient vulnerability

Thomas Leaman discovered that the Python client library for Glance did not properly verify SSL certificates. A remote attacker could exploit this to perform a machine-in-the-middle attack...

python-glanceclient (=0.14.3) potentially affected by CVE-2013-4314 via pyopenssl (=0.13.0)

pyopenssl PYPI version =0.13.0 is affected by a known vulnerability. The following packages have a transitive dependency on pyopenssl and may be impacted: - python-glanceclient =0.14.3 Source cves: CVE-2013-4314 Source advisory: OSV:PYSEC-2013-31...

Moderate: Red Hat Security Advisory: python-glanceclient security update

An updated python-glanceclient package that fixes one security issue is now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CVE-2013-4111

The CVE concerns the Python client library for Glance, python-glanceclient, where versions before 0.10.0 fail to properly validate the server certificate (preverify_ok), allowing MITM spoofing via an arbitrary valid X.509 certificate. Impact: potential SSL-based credential/server spoofing. The is...

PT-2013-4852 · Openstack · Python-Glanceclient

Name of the Vulnerable Software and Affected Versions: python-glanceclient versions prior to 0.10.0 Description: The issue concerns a problem with the verification of server hostnames in the python-glanceclient library. Specifically, it does not properly check the preverify ok value, which is...