Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2020-29651
Vulnerability from cvelistv5
Published
2020-12-09 06:58
Modified
2024-08-04 16:55
Severity ?
EPSS score ?
Summary
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T16:55:10.822Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://github.com/pytest-dev/py/issues/256", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://github.com/pytest-dev/py/pull/257", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { name: "FEDORA-2020-db0eb54982", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { name: "FEDORA-2020-8371993b6b", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-07-25T16:18:32", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://github.com/pytest-dev/py/issues/256", }, { tags: [ "x_refsource_MISC", ], url: "https://github.com/pytest-dev/py/pull/257", }, { tags: [ "x_refsource_MISC", ], url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { name: "FEDORA-2020-db0eb54982", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { name: "FEDORA-2020-8371993b6b", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { tags: [ "x_refsource_MISC", ], url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-29651", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/pytest-dev/py/issues/256", refsource: "MISC", url: "https://github.com/pytest-dev/py/issues/256", }, { name: "https://github.com/pytest-dev/py/pull/257", refsource: "MISC", url: "https://github.com/pytest-dev/py/pull/257", }, { name: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", refsource: "MISC", url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { name: "FEDORA-2020-db0eb54982", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { name: "FEDORA-2020-8371993b6b", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { name: "https://www.oracle.com/security-alerts/cpujul2022.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2020-29651", datePublished: "2020-12-09T06:58:22", dateReserved: "2020-12-09T00:00:00", dateUpdated: "2024-08-04T16:55:10.822Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2020-29651\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2020-12-09T07:15:12.533\",\"lastModified\":\"2024-11-21T05:24:21.253\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.\"},{\"lang\":\"es\",\"value\":\"Una denegación de servicio por medio de una expresión regular en el componente py.path.svnwc de py (también se conoce como python-py) versiones hasta 1.9.0, podría ser usada por atacantes para causar un ataque de denegación de servicio del compute-time al suministrar una entrada maliciosa en la funcionalidad blame\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:pytest:py:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.9.0\",\"matchCriteriaId\":\"ECA167BF-7091-4A60-A971-78A3837D3D91\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36D96259-24BD-44E2-96D9-78CE1D41F956\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3E503FB-6279-4D4A-91D8-E237ECF9D2B0\"}]}]}],\"references\":[{\"url\":\"https://github.com/pytest-dev/py/issues/256\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/pytest-dev/py/pull/257\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/pytest-dev/py/issues/256\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/pytest-dev/py/pull/257\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
opensuse-su-2021:1859-1
Vulnerability from csaf_opensuse
Published
2021-07-11 09:21
Modified
2021-07-11 09:21
Summary
Security update for python-py
Notes
Title of the patch
Security update for python-py
Description of the patch
This update for python-py fixes the following issues:
- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).
Patchnames
openSUSE-SLE-15.3-2021-1859
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-py", title: "Title of the patch", }, { category: "description", text: "This update for python-py fixes the following issues:\n\n- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).\n", title: "Description of the patch", }, { category: "details", text: "openSUSE-SLE-15.3-2021-1859", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1859-1.json", }, { category: "self", summary: "URL for openSUSE-SU-2021:1859-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/B5MZ7NDWQ2PACIOK5L2D7CNODUCJCARI/", }, { category: "self", summary: "E-Mail link for openSUSE-SU-2021:1859-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/B5MZ7NDWQ2PACIOK5L2D7CNODUCJCARI/", }, { category: "self", summary: "SUSE Bug 1179805", url: "https://bugzilla.suse.com/1179805", }, { category: "self", summary: "SUSE Bug 1184505", url: "https://bugzilla.suse.com/1184505", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "Security update for python-py", tracking: { current_release_date: "2021-07-11T09:21:16Z", generator: { date: "2021-07-11T09:21:16Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2021:1859-1", initial_release_date: "2021-07-11T09:21:16Z", revision_history: [ { date: "2021-07-11T09:21:16Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python2-py-1.8.1-5.6.1.noarch", product: { name: "python2-py-1.8.1-5.6.1.noarch", product_id: "python2-py-1.8.1-5.6.1.noarch", }, }, { category: "product_version", name: "python3-py-1.8.1-5.6.1.noarch", product: { name: "python3-py-1.8.1-5.6.1.noarch", product_id: "python3-py-1.8.1-5.6.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_name", name: "openSUSE Leap 15.3", product: { name: "openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.3", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python2-py-1.8.1-5.6.1.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-py-1.8.1-5.6.1.noarch", }, product_reference: "python2-py-1.8.1-5.6.1.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.8.1-5.6.1.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-py-1.8.1-5.6.1.noarch", }, product_reference: "python3-py-1.8.1-5.6.1.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, ], }, vulnerabilities: [ { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.3:python2-py-1.8.1-5.6.1.noarch", "openSUSE Leap 15.3:python3-py-1.8.1-5.6.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.3:python2-py-1.8.1-5.6.1.noarch", "openSUSE Leap 15.3:python3-py-1.8.1-5.6.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.3:python2-py-1.8.1-5.6.1.noarch", "openSUSE Leap 15.3:python3-py-1.8.1-5.6.1.noarch", ], }, ], threats: [ { category: "impact", date: "2021-07-11T09:21:16Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
opensuse-su-2024:14153-1
Vulnerability from csaf_opensuse
Published
2024-07-12 00:00
Modified
2024-07-12 00:00
Summary
python310-py-1.11.0-6.5 on GA media
Notes
Title of the patch
python310-py-1.11.0-6.5 on GA media
Description of the patch
These are all security issues fixed in the python310-py-1.11.0-6.5 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-14153
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python310-py-1.11.0-6.5 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python310-py-1.11.0-6.5 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-14153", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14153-1.json", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "python310-py-1.11.0-6.5 on GA media", tracking: { current_release_date: "2024-07-12T00:00:00Z", generator: { date: "2024-07-12T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:14153-1", initial_release_date: "2024-07-12T00:00:00Z", revision_history: [ { date: "2024-07-12T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python310-py-1.11.0-6.5.aarch64", product: { name: "python310-py-1.11.0-6.5.aarch64", product_id: "python310-py-1.11.0-6.5.aarch64", }, }, { category: "product_version", name: "python311-py-1.11.0-6.5.aarch64", product: { name: "python311-py-1.11.0-6.5.aarch64", product_id: "python311-py-1.11.0-6.5.aarch64", }, }, { category: "product_version", name: "python312-py-1.11.0-6.5.aarch64", product: { name: "python312-py-1.11.0-6.5.aarch64", product_id: "python312-py-1.11.0-6.5.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python310-py-1.11.0-6.5.ppc64le", product: { name: "python310-py-1.11.0-6.5.ppc64le", product_id: "python310-py-1.11.0-6.5.ppc64le", }, }, { category: "product_version", name: "python311-py-1.11.0-6.5.ppc64le", product: { name: "python311-py-1.11.0-6.5.ppc64le", product_id: "python311-py-1.11.0-6.5.ppc64le", }, }, { category: "product_version", name: "python312-py-1.11.0-6.5.ppc64le", product: { name: "python312-py-1.11.0-6.5.ppc64le", product_id: "python312-py-1.11.0-6.5.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python310-py-1.11.0-6.5.s390x", product: { name: "python310-py-1.11.0-6.5.s390x", product_id: "python310-py-1.11.0-6.5.s390x", }, }, { category: "product_version", name: "python311-py-1.11.0-6.5.s390x", product: { name: "python311-py-1.11.0-6.5.s390x", product_id: "python311-py-1.11.0-6.5.s390x", }, }, { category: "product_version", name: "python312-py-1.11.0-6.5.s390x", product: { name: "python312-py-1.11.0-6.5.s390x", product_id: "python312-py-1.11.0-6.5.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python310-py-1.11.0-6.5.x86_64", product: { name: "python310-py-1.11.0-6.5.x86_64", product_id: "python310-py-1.11.0-6.5.x86_64", }, }, { category: "product_version", name: "python311-py-1.11.0-6.5.x86_64", product: { name: "python311-py-1.11.0-6.5.x86_64", product_id: "python311-py-1.11.0-6.5.x86_64", }, }, { category: "product_version", name: "python312-py-1.11.0-6.5.x86_64", product: { name: "python312-py-1.11.0-6.5.x86_64", product_id: "python312-py-1.11.0-6.5.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python310-py-1.11.0-6.5.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-py-1.11.0-6.5.aarch64", }, product_reference: "python310-py-1.11.0-6.5.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-py-1.11.0-6.5.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-py-1.11.0-6.5.ppc64le", }, product_reference: "python310-py-1.11.0-6.5.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-py-1.11.0-6.5.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-py-1.11.0-6.5.s390x", }, product_reference: "python310-py-1.11.0-6.5.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-py-1.11.0-6.5.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-py-1.11.0-6.5.x86_64", }, product_reference: "python310-py-1.11.0-6.5.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-py-1.11.0-6.5.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-py-1.11.0-6.5.aarch64", }, product_reference: "python311-py-1.11.0-6.5.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-py-1.11.0-6.5.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-py-1.11.0-6.5.ppc64le", }, product_reference: "python311-py-1.11.0-6.5.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-py-1.11.0-6.5.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-py-1.11.0-6.5.s390x", }, product_reference: "python311-py-1.11.0-6.5.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-py-1.11.0-6.5.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-py-1.11.0-6.5.x86_64", }, product_reference: "python311-py-1.11.0-6.5.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-py-1.11.0-6.5.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-py-1.11.0-6.5.aarch64", }, product_reference: "python312-py-1.11.0-6.5.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-py-1.11.0-6.5.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-py-1.11.0-6.5.ppc64le", }, product_reference: "python312-py-1.11.0-6.5.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-py-1.11.0-6.5.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-py-1.11.0-6.5.s390x", }, product_reference: "python312-py-1.11.0-6.5.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-py-1.11.0-6.5.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-py-1.11.0-6.5.x86_64", }, product_reference: "python312-py-1.11.0-6.5.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.x86_64", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.x86_64", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.x86_64", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.x86_64", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python310-py-1.11.0-6.5.x86_64", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python311-py-1.11.0-6.5.x86_64", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.aarch64", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.ppc64le", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.s390x", "openSUSE Tumbleweed:python312-py-1.11.0-6.5.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-07-12T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
opensuse-su-2024:11252-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
python36-py-1.10.0-1.5 on GA media
Notes
Title of the patch
python36-py-1.10.0-1.5 on GA media
Description of the patch
These are all security issues fixed in the python36-py-1.10.0-1.5 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11252
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python36-py-1.10.0-1.5 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python36-py-1.10.0-1.5 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-11252", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11252-1.json", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "python36-py-1.10.0-1.5 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:11252-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python36-py-1.10.0-1.5.aarch64", product: { name: "python36-py-1.10.0-1.5.aarch64", product_id: "python36-py-1.10.0-1.5.aarch64", }, }, { category: "product_version", name: "python38-py-1.10.0-1.5.aarch64", product: { name: "python38-py-1.10.0-1.5.aarch64", product_id: "python38-py-1.10.0-1.5.aarch64", }, }, { category: "product_version", name: "python39-py-1.10.0-1.5.aarch64", product: { name: "python39-py-1.10.0-1.5.aarch64", product_id: "python39-py-1.10.0-1.5.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python36-py-1.10.0-1.5.ppc64le", product: { name: "python36-py-1.10.0-1.5.ppc64le", product_id: "python36-py-1.10.0-1.5.ppc64le", }, }, { category: "product_version", name: "python38-py-1.10.0-1.5.ppc64le", product: { name: "python38-py-1.10.0-1.5.ppc64le", product_id: "python38-py-1.10.0-1.5.ppc64le", }, }, { category: "product_version", name: "python39-py-1.10.0-1.5.ppc64le", product: { name: "python39-py-1.10.0-1.5.ppc64le", product_id: "python39-py-1.10.0-1.5.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python36-py-1.10.0-1.5.s390x", product: { name: "python36-py-1.10.0-1.5.s390x", product_id: "python36-py-1.10.0-1.5.s390x", }, }, { category: "product_version", name: "python38-py-1.10.0-1.5.s390x", product: { name: "python38-py-1.10.0-1.5.s390x", product_id: "python38-py-1.10.0-1.5.s390x", }, }, { category: "product_version", name: "python39-py-1.10.0-1.5.s390x", product: { name: "python39-py-1.10.0-1.5.s390x", product_id: "python39-py-1.10.0-1.5.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python36-py-1.10.0-1.5.x86_64", product: { name: "python36-py-1.10.0-1.5.x86_64", product_id: "python36-py-1.10.0-1.5.x86_64", }, }, { category: "product_version", name: "python38-py-1.10.0-1.5.x86_64", product: { name: "python38-py-1.10.0-1.5.x86_64", product_id: "python38-py-1.10.0-1.5.x86_64", }, }, { category: "product_version", name: "python39-py-1.10.0-1.5.x86_64", product: { name: "python39-py-1.10.0-1.5.x86_64", product_id: "python39-py-1.10.0-1.5.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python36-py-1.10.0-1.5.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-py-1.10.0-1.5.aarch64", }, product_reference: "python36-py-1.10.0-1.5.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-py-1.10.0-1.5.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-py-1.10.0-1.5.ppc64le", }, product_reference: "python36-py-1.10.0-1.5.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-py-1.10.0-1.5.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-py-1.10.0-1.5.s390x", }, product_reference: "python36-py-1.10.0-1.5.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-py-1.10.0-1.5.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-py-1.10.0-1.5.x86_64", }, product_reference: "python36-py-1.10.0-1.5.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-py-1.10.0-1.5.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-py-1.10.0-1.5.aarch64", }, product_reference: "python38-py-1.10.0-1.5.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-py-1.10.0-1.5.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-py-1.10.0-1.5.ppc64le", }, product_reference: "python38-py-1.10.0-1.5.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-py-1.10.0-1.5.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-py-1.10.0-1.5.s390x", }, product_reference: "python38-py-1.10.0-1.5.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-py-1.10.0-1.5.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-py-1.10.0-1.5.x86_64", }, product_reference: "python38-py-1.10.0-1.5.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-py-1.10.0-1.5.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-py-1.10.0-1.5.aarch64", }, product_reference: "python39-py-1.10.0-1.5.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-py-1.10.0-1.5.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-py-1.10.0-1.5.ppc64le", }, product_reference: "python39-py-1.10.0-1.5.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-py-1.10.0-1.5.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-py-1.10.0-1.5.s390x", }, product_reference: "python39-py-1.10.0-1.5.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-py-1.10.0-1.5.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-py-1.10.0-1.5.x86_64", }, product_reference: "python39-py-1.10.0-1.5.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.x86_64", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.x86_64", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.x86_64", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.x86_64", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python36-py-1.10.0-1.5.x86_64", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python38-py-1.10.0-1.5.x86_64", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.aarch64", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.ppc64le", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.s390x", "openSUSE Tumbleweed:python39-py-1.10.0-1.5.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
opensuse-su-2021:0851-1
Vulnerability from csaf_opensuse
Published
2021-06-07 12:06
Modified
2021-06-07 12:06
Summary
Security update for python-py
Notes
Title of the patch
Security update for python-py
Description of the patch
This update for python-py fixes the following issues:
- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Patchnames
openSUSE-2021-851
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-py", title: "Title of the patch", }, { category: "description", text: "This update for python-py fixes the following issues:\n\n- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).\n\nThis update was imported from the SUSE:SLE-15-SP1:Update update project.", title: "Description of the patch", }, { category: "details", text: "openSUSE-2021-851", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_0851-1.json", }, { category: "self", summary: "URL for openSUSE-SU-2021:0851-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/J5N5MI5XRBM5X46XPGTD3CVA6C5MMBQJ/", }, { category: "self", summary: "E-Mail link for openSUSE-SU-2021:0851-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/J5N5MI5XRBM5X46XPGTD3CVA6C5MMBQJ/", }, { category: "self", summary: "SUSE Bug 1179805", url: "https://bugzilla.suse.com/1179805", }, { category: "self", summary: "SUSE Bug 1184505", url: "https://bugzilla.suse.com/1184505", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "Security update for python-py", tracking: { current_release_date: "2021-06-07T12:06:03Z", generator: { date: "2021-06-07T12:06:03Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2021:0851-1", initial_release_date: "2021-06-07T12:06:03Z", revision_history: [ { date: "2021-06-07T12:06:03Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python2-py-1.8.1-lp152.2.6.1.noarch", product: { name: "python2-py-1.8.1-lp152.2.6.1.noarch", product_id: "python2-py-1.8.1-lp152.2.6.1.noarch", }, }, { category: "product_version", name: "python3-py-1.8.1-lp152.2.6.1.noarch", product: { name: "python3-py-1.8.1-lp152.2.6.1.noarch", product_id: "python3-py-1.8.1-lp152.2.6.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_name", name: "openSUSE Leap 15.2", product: { name: "openSUSE Leap 15.2", product_id: "openSUSE Leap 15.2", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.2", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python2-py-1.8.1-lp152.2.6.1.noarch as component of openSUSE Leap 15.2", product_id: "openSUSE Leap 15.2:python2-py-1.8.1-lp152.2.6.1.noarch", }, product_reference: "python2-py-1.8.1-lp152.2.6.1.noarch", relates_to_product_reference: "openSUSE Leap 15.2", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.8.1-lp152.2.6.1.noarch as component of openSUSE Leap 15.2", product_id: "openSUSE Leap 15.2:python3-py-1.8.1-lp152.2.6.1.noarch", }, product_reference: "python3-py-1.8.1-lp152.2.6.1.noarch", relates_to_product_reference: "openSUSE Leap 15.2", }, ], }, vulnerabilities: [ { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.2:python2-py-1.8.1-lp152.2.6.1.noarch", "openSUSE Leap 15.2:python3-py-1.8.1-lp152.2.6.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.2:python2-py-1.8.1-lp152.2.6.1.noarch", "openSUSE Leap 15.2:python3-py-1.8.1-lp152.2.6.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.2:python2-py-1.8.1-lp152.2.6.1.noarch", "openSUSE Leap 15.2:python3-py-1.8.1-lp152.2.6.1.noarch", ], }, ], threats: [ { category: "impact", date: "2021-06-07T12:06:03Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
opensuse-su-2024:11108-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
oci-cli-3.0.2-1.2 on GA media
Notes
Title of the patch
oci-cli-3.0.2-1.2 on GA media
Description of the patch
These are all security issues fixed in the oci-cli-3.0.2-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11108
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "oci-cli-3.0.2-1.2 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the oci-cli-3.0.2-1.2 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-11108", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11108-1.json", }, { category: "self", summary: "SUSE CVE CVE-2017-18342 page", url: "https://www.suse.com/security/cve/CVE-2017-18342/", }, { category: "self", summary: "SUSE CVE CVE-2020-14343 page", url: "https://www.suse.com/security/cve/CVE-2020-14343/", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "oci-cli-3.0.2-1.2 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:11108-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "oci-cli-3.0.2-1.2.aarch64", product: { name: "oci-cli-3.0.2-1.2.aarch64", product_id: "oci-cli-3.0.2-1.2.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "oci-cli-3.0.2-1.2.ppc64le", product: { name: "oci-cli-3.0.2-1.2.ppc64le", product_id: "oci-cli-3.0.2-1.2.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "oci-cli-3.0.2-1.2.s390x", product: { name: "oci-cli-3.0.2-1.2.s390x", product_id: "oci-cli-3.0.2-1.2.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "oci-cli-3.0.2-1.2.x86_64", product: { name: "oci-cli-3.0.2-1.2.x86_64", product_id: "oci-cli-3.0.2-1.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "oci-cli-3.0.2-1.2.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", }, product_reference: "oci-cli-3.0.2-1.2.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "oci-cli-3.0.2-1.2.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", }, product_reference: "oci-cli-3.0.2-1.2.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "oci-cli-3.0.2-1.2.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", }, product_reference: "oci-cli-3.0.2-1.2.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "oci-cli-3.0.2-1.2.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", }, product_reference: "oci-cli-3.0.2-1.2.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2017-18342", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-18342", }, ], notes: [ { category: "general", text: "In PyYAML before 5.1, the yaml.load() API could execute arbitrary code if used with untrusted data. The load() function has been deprecated in version 5.1 and the 'UnsafeLoader' has been introduced for backward compatibility with the function.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-18342", url: "https://www.suse.com/security/cve/CVE-2017-18342", }, { category: "external", summary: "SUSE Bug 1099308 for CVE-2017-18342", url: "https://bugzilla.suse.com/1099308", }, { category: "external", summary: "SUSE Bug 1164453 for CVE-2017-18342", url: "https://bugzilla.suse.com/1164453", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.4, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2017-18342", }, { cve: "CVE-2020-14343", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14343", }, ], notes: [ { category: "general", text: "A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14343", url: "https://www.suse.com/security/cve/CVE-2020-14343", }, { category: "external", summary: "SUSE Bug 1174514 for CVE-2020-14343", url: "https://bugzilla.suse.com/1174514", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-14343", }, { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.aarch64", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.ppc64le", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.s390x", "openSUSE Tumbleweed:oci-cli-3.0.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
suse-su-2021:1859-1
Vulnerability from csaf_suse
Published
2021-06-04 07:02
Modified
2021-06-04 07:02
Summary
Security update for python-py
Notes
Title of the patch
Security update for python-py
Description of the patch
This update for python-py fixes the following issues:
- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).
Patchnames
SUSE-2021-1859,SUSE-SLE-Module-Basesystem-15-SP2-2021-1859,SUSE-SLE-Module-Basesystem-15-SP3-2021-1859,SUSE-SLE-Module-Python2-15-SP2-2021-1859,SUSE-SLE-Module-Python2-15-SP3-2021-1859,SUSE-SUSE-MicroOS-5.0-2021-1859
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-py", title: "Title of the patch", }, { category: "description", text: "This update for python-py fixes the following issues:\n\n- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2021-1859,SUSE-SLE-Module-Basesystem-15-SP2-2021-1859,SUSE-SLE-Module-Basesystem-15-SP3-2021-1859,SUSE-SLE-Module-Python2-15-SP2-2021-1859,SUSE-SLE-Module-Python2-15-SP3-2021-1859,SUSE-SUSE-MicroOS-5.0-2021-1859", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1859-1.json", }, { category: "self", summary: "URL for SUSE-SU-2021:1859-1", url: "https://www.suse.com/support/update/announcement/2021/suse-su-20211859-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2021:1859-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2021-June/008931.html", }, { category: "self", summary: "SUSE Bug 1179805", url: "https://bugzilla.suse.com/1179805", }, { category: "self", summary: "SUSE Bug 1184505", url: "https://bugzilla.suse.com/1184505", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "Security update for python-py", tracking: { current_release_date: "2021-06-04T07:02:58Z", generator: { date: "2021-06-04T07:02:58Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2021:1859-1", initial_release_date: "2021-06-04T07:02:58Z", revision_history: [ { date: "2021-06-04T07:02:58Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python2-py-1.8.1-5.6.1.noarch", product: { name: "python2-py-1.8.1-5.6.1.noarch", product_id: "python2-py-1.8.1-5.6.1.noarch", }, }, { category: "product_version", name: "python3-py-1.8.1-5.6.1.noarch", product: { name: "python3-py-1.8.1-5.6.1.noarch", product_id: "python3-py-1.8.1-5.6.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Basesystem 15 SP2", product: { name: "SUSE Linux Enterprise Module for Basesystem 15 SP2", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-basesystem:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Basesystem 15 SP3", product: { name: "SUSE Linux Enterprise Module for Basesystem 15 SP3", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-basesystem:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Python 2 15 SP2", product: { name: "SUSE Linux Enterprise Module for Python 2 15 SP2", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-python2:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Python 2 15 SP3", product: { name: "SUSE Linux Enterprise Module for Python 2 15 SP3", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-python2:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Micro 5.0", product: { name: "SUSE Linux Enterprise Micro 5.0", product_id: "SUSE Linux Enterprise Micro 5.0", product_identification_helper: { cpe: "cpe:/o:suse:suse-microos:5.0", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-py-1.8.1-5.6.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-py-1.8.1-5.6.1.noarch", }, product_reference: "python3-py-1.8.1-5.6.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP2", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.8.1-5.6.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP3", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.8.1-5.6.1.noarch", }, product_reference: "python3-py-1.8.1-5.6.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-py-1.8.1-5.6.1.noarch as component of SUSE Linux Enterprise Module for Python 2 15 SP2", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-py-1.8.1-5.6.1.noarch", }, product_reference: "python2-py-1.8.1-5.6.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 2 15 SP2", }, { category: "default_component_of", full_product_name: { name: "python2-py-1.8.1-5.6.1.noarch as component of SUSE Linux Enterprise Module for Python 2 15 SP3", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.8.1-5.6.1.noarch", }, product_reference: "python2-py-1.8.1-5.6.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 2 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.8.1-5.6.1.noarch as component of SUSE Linux Enterprise Micro 5.0", product_id: "SUSE Linux Enterprise Micro 5.0:python3-py-1.8.1-5.6.1.noarch", }, product_reference: "python3-py-1.8.1-5.6.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Micro 5.0", }, ], }, vulnerabilities: [ { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.0:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.8.1-5.6.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.0:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.8.1-5.6.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.0:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP2:python2-py-1.8.1-5.6.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.8.1-5.6.1.noarch", ], }, ], threats: [ { category: "impact", date: "2021-06-04T07:02:58Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
suse-su-2021:2554-1
Vulnerability from csaf_suse
Published
2021-07-28 15:27
Modified
2021-07-28 15:27
Summary
Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema
Notes
Title of the patch
Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema
Description of the patch
This update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema fixes the following issues:
Security fixes included on this update:
cassandra-kit:
- CVE-2020-17516: Internode encryption enforcement vulnerability
cassandra:
- CVE-2020-17516: Internode encryption enforcement vulnerability
- CVE-2017-5929 logback: Fixed a serialization vulnerability in SocketServer and ServerSocketReceiver
crowbar-core:
CVE-2020-26247: Potentially XXE or SSRF attacks by parsed Nokogiri::XML::Schema
grafana:
- CVE-2021-27358: Unauthenticated remote attackers to trigger a Denial of Service via a remote API call
kibana:
- CVE-2017-11481: Fixed an XSS via URL fields
- CVE-2017-11499: Fixed a constant hashtable seeds vulnerability
python-Django:
- CVE-2021-28658: Potential directory-traversal via uploaded files
- CVE-2021-31542: Potential directory-traversal via uploaded files
- CVE-2021-33203: Potential directory traversal via admindocs
- CVE-2021-33571: Possible indeterminate SSRF, RFI, and LFI attacks since validators accepted leading zeros in IPv4 addresses
- CVE-2021-23336: Fixed web cache poisoning via django.utils.http.limited_parse_qsl
python-eventlet:
- CVE-2021-21419: Improper handling of highly compressed data and memory allocation with excessive size value
python-pysaml2:
- CVE-2021-21238: Fixed an improper verification of cryptographic signatures for signed SAML documents
- CVE-2021-21239: Fixed an improper verification of cryptographic signatures when using CryptoBackendXmlSec1()_
python-py:
- CVE-2020-29651: Regular expression denial of service in svnwc.py
rubygem-activerecord-session_store:
- CVE-2019-25025: Fixed a hijack sessions by using timing attacks targeting the session id
CVE-2019-16782
Non-security fixes included on this update:
Changes in ardana-cobbler:
- Update to version 8.0+git.1614096566.e8c2b27:
* Change install_recommended to true (bsc#1181828)
Changes in cassandra:
- update to 3.11.10 (bsc#1181689, CVE-2020-17516)
* Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)
* Reduce amount of allocations during batch statement execution (CASSANDRA-16201)
* Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)
* Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)
* Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)
* SASI's `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)
* Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)
* Improve empty hint file handling during startup (CASSANDRA-16162)
* Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)
* Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)
* Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)
* Synchronize transaction logs for JBOD (CASSANDRA-16225)
* Fix the counting of cells per partition (CASSANDRA-16259)
* Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)
* Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)
* Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)
* Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)
* Remove the SEPExecutor blocking behavior (CASSANDRA-16186)
* Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)
* Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)
* Wait for schema agreement when bootstrapping (CASSANDRA-15158)
* Fix the histogram merge of the table metrics (CASSANDRA-16259)
* Synchronize Keyspace instance store/clear (CASSANDRA-16210)
* Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)
* Fix memory leak in CompressedChunkReader (CASSANDRA-15880)
* Don't attempt value skipping with mixed version cluster (CASSANDRA-15833)
* Avoid failing compactions with very large partitions (CASSANDRA-15164)
* Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)
* Fix OOM when terminating repair session (CASSANDRA-15902)
* Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)
* Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)
* Handle unexpected columns due to schema races (CASSANDRA-15899)
* Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)
* Package tools/bin scripts as executable (CASSANDRA-16151)
* Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)
* Correctly interpret SASI's `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)
* Fix short read protection for GROUP BY queries (CASSANDRA-15459)
* Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)
Merged from 3.0:
* Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)
* Fix gossip shutdown order (CASSANDRA-15816)
* Remove broken 'defrag-on-read' optimization (CASSANDRA-15432)
* Check for endpoint collision with hibernating nodes (CASSANDRA-14599)
* Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)
* stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)
* Forbid altering UDTs used in partition keys (CASSANDRA-15933)
* Fix empty/null json string representation (CASSANDRA-15896)
* 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)
* Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)
Merged from 2.2:
* Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)
* Only allow strings to be passed to JMX authentication (CASSANDRA-16077)
* Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)
* Upgrade Jackson to 2.9.10 (CASSANDRA-15867)
* Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)
* Allow sstableloader to use SSL on the native port (CASSANDRA-14904)
* Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)
* Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)
* Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)
* Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)
* Add token to tombstone warning and error messages (CASSANDRA-15890)
* Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)
* Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)
* Fix replica-side filtering returning stale data with CL > ONE (CASSANDRA-8272, CASSANDRA-8273)
* Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)
* Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)
* EmptyType doesn't override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)
* Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)
* Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)
* liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)
* Fix Debian init start/stop (CASSANDRA-15770)
* Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)
* Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)
* Allow selecting static column only when querying static index (CASSANDRA-14242)
* cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)
* Don't skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)
* Memtable memory allocations may deadlock (CASSANDRA-15367)
* Run evictFromMembership in GossipStage (CASSANDRA-15592)
* Fix nomenclature of allow and deny lists (CASSANDRA-15862)
* Remove generated files from source artifact (CASSANDRA-15849)
* Remove duplicated tools binaries from tarballs (CASSANDRA-15768)
* Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)
* Disable JMX rebinding (CASSANDRA-15653)
* Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)
* Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)
* Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)
* Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)
* Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)
* Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)
* Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)
* Fix SELECT JSON formatting for the 'duration' type (CASSANDRA-15075)
* Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)
* Update nodetool help stop output (CASSANDRA-15401)
* Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)
* Include updates to static column in mutation size calculations (CASSANDRA-15293)
* Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)
* GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)
* Fix sstabledump's position key value when partitions have multiple rows (CASSANDRA-14721)
* Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)
* Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11
(CASSANDRA-15441)
* Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)
* Fix various data directory prefix matching issues (CASSANDRA-13974)
* Minimize clustering values in metadata collector (CASSANDRA-15400)
* Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)
* validate value sizes in LegacyLayout (CASSANDRA-15373)
* Ensure that tracing doesn't break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)
* Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)
* Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)
* Fix race condition when setting bootstrap flags (CASSANDRA-14878)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SELECT JSON output for empty blobs (CASSANDRA-15435)
* In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)
* In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)
* Make sure user defined compaction transactions are always closed (CASSANDRA-15123)
* Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)
* Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)
* Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)
* Add ability to cap max negotiable protocol version (CASSANDRA-15193)
* Gossip tokens on startup if available (CASSANDRA-15335)
* Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)
* Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)
* Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)
* Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)
* Filter sstables earlier when running cleanup (CASSANDRA-15100)
* Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)
* Avoid updating unchanged gossip states (CASSANDRA-15097)
* Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)
* Prevent client requests from blocking on executor task queue (CASSANDRA-15013)
* Toughen up column drop/recreate type validations (CASSANDRA-15204)
* LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)
* Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)
* Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)
* Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)
* Handle paging states serialized with a different version than the session's (CASSANDRA-15176)
* Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)
* Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)
* Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)
* Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)
* Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)
* Fix mixed mode partition range scans with limit (CASSANDRA-15072)
* cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)
* Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)
* Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)
* Improve `nodetool status -r` speed (CASSANDRA-14847)
* Improve merkle tree size and time on heap (CASSANDRA-14096)
* Add missing commands to nodetool_completion (CASSANDRA-14916)
* Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)
* Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)
* Handle exceptions during authentication/authorization (CASSANDRA-15041)
* Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)
* Fix index summary redistribution cancellation (CASSANDRA-15045)
* Fixing invalid CQL in security documentation (CASSANDRA-15020)
* Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)
* Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)
* Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)
* Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser
* Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)
* If SizeEstimatesRecorder misses a 'onDropTable' notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)
* Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)
* Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)
* Fix cassandra-stress write hang with default options (CASSANDRA-14616)
* Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)
* Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)
* Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)
* RangeTombstoneList doesn't properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)
* Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)
* Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)
* Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)
* Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)
* Move TWCS message 'No compaction necessary for bucket size' to Trace level (CASSANDRA-14884)
* Sstable min/max metadata can cause data loss (CASSANDRA-14861)
* Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)
* Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)
* Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)
* Reverse order reads can return incomplete results (CASSANDRA-14803)
* Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)
* Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)
* DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)
* Fix corrupted collection deletions for dropped columns in 3.0 2.{1,2} messages (CASSANDRA-14568)
* Fix corrupted static collection deletions in 3.0 2.{1,2} messages (CASSANDRA-14568)
* Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)
* Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)
* Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)
* Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)
* sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)
* Fix reading columns with non-UTF names from schema (CASSANDRA-14468)
* Don't enable client transports when bootstrap is pending (CASSANDRA-14525)
* MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)
* Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)
* Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)
* Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)
* Validate supported column type with SASI analyzer (CASSANDRA-13669)
* Remove BTree.Builder Recycler to reduce memory usage (CASSANDRA-13929)
* Reduce nodetool GC thread count (CASSANDRA-14475)
* Fix New SASI view creation during Index Redistribution (CASSANDRA-14055)
* Remove string formatting lines from BufferPool hot path (CASSANDRA-14416)
* Update metrics to 3.1.5 (CASSANDRA-12924)
* Detect OpenJDK jvm type and architecture (CASSANDRA-12793)
* Don't use guava collections in the non-system keyspace jmx attributes (CASSANDRA-12271)
* Allow existing nodes to use all peers in shadow round (CASSANDRA-13851)
* Fix cqlsh to read connection.ssl cqlshrc option again (CASSANDRA-14299)
* Downgrade log level to trace for CommitLogSegmentManager (CASSANDRA-14370)
* CQL fromJson(null) throws NullPointerException (CASSANDRA-13891)
* Serialize empty buffer as empty string for json output format (CASSANDRA-14245)
* Allow logging implementation to be interchanged for embedded testing (CASSANDRA-13396)
* SASI tokenizer for simple delimiter based entries (CASSANDRA-14247)
* Fix Loss of digits when doing CAST from varint/bigint to decimal (CASSANDRA-14170)
* RateBasedBackPressure unnecessarily invokes a lock on the Guava RateLimiter (CASSANDRA-14163)
* Fix wildcard GROUP BY queries (CASSANDRA-14209)
* Fix corrupted static collection deletions in 3.0 -> 2.{1,2} messages (CASSANDRA-14568)
* Fix potential IndexOutOfBoundsException with counters (CASSANDRA-14167)
* Always close RT markers returned by ReadCommand#executeLocally() (CASSANDRA-14515)
* Reverse order queries with range tombstones can cause data loss (CASSANDRA-14513)
* Fix regression of lagging commitlog flush log message (CASSANDRA-14451)
* Add Missing dependencies in pom-all (CASSANDRA-14422)
* Cleanup StartupClusterConnectivityChecker and PING Verb (CASSANDRA-14447)
* Fix deprecated repair error notifications from 3.x clusters to legacy JMX clients (CASSANDRA-13121)
* Cassandra not starting when using enhanced startup scripts in windows (CASSANDRA-14418)
* Fix progress stats and units in compactionstats (CASSANDRA-12244)
* Better handle missing partition columns in system_schema.columns (CASSANDRA-14379)
* Delay hints store excise by write timeout to avoid race with decommission (CASSANDRA-13740)
* Deprecate background repair and probablistic read_repair_chance table options
(CASSANDRA-13910)
* Add missed CQL keywords to documentation (CASSANDRA-14359)
* Fix unbounded validation compactions on repair / revert CASSANDRA-13797 (CASSANDRA-14332)
* Avoid deadlock when running nodetool refresh before node is fully up (CASSANDRA-14310)
* Handle all exceptions when opening sstables (CASSANDRA-14202)
* Handle incompletely written hint descriptors during startup (CASSANDRA-14080)
* Handle repeat open bound from SRP in read repair (CASSANDRA-14330)
* Respect max hint window when hinting for LWT (CASSANDRA-14215)
* Adding missing WriteType enum values to v3, v4, and v5 spec (CASSANDRA-13697)
* Don't regenerate bloomfilter and summaries on startup (CASSANDRA-11163)
* Fix NPE when performing comparison against a null frozen in LWT (CASSANDRA-14087)
* Log when SSTables are deleted (CASSANDRA-14302)
* Fix batch commitlog sync regression (CASSANDRA-14292)
* Write to pending endpoint when view replica is also base replica (CASSANDRA-14251)
* Chain commit log marker potential performance regression in batch commit mode (CASSANDRA-14194)
* Fully utilise specified compaction threads (CASSANDRA-14210)
* Pre-create deletion log records to finish compactions quicker (CASSANDRA-12763)
* Fix bug that prevented compaction of SSTables after full repairs (CASSANDRA-14423)
* Incorrect counting of pending messages in OutboundTcpConnection (CASSANDRA-11551)
* Fix compaction failure caused by reading un-flushed data (CASSANDRA-12743)
* Use Bounds instead of Range for sstables in anticompaction (CASSANDRA-14411)
* Fix JSON queries with IN restrictions and ORDER BY clause (CASSANDRA-14286)
* Backport circleci yaml (CASSANDRA-14240)
* Check checksum before decompressing data (CASSANDRA-14284)
* CVE-2017-5929 Security vulnerability in Logback warning in NEWS.txt (CASSANDRA-14183)
- Use %license macro
Changes in cassandra-kit:
- Update to Cassandra 3.11.10 (bsc#1181689, CVE-2020-17516)
Changes in crowbar-core:
- Update to version 5.0+git.1622489449.a8e60e238:
* avoid v4.1.5 of delayed_job_active_record (noref)
* add CVE-2020-26247 to travis ignore list (bsc#1180507)
Changes in crowbar-openstack:
- Update to version 5.0+git.1616001417.67fd9c2a1:
* monasca: restart Kibana on update (bsc#1044849)
- Update to version 5.0+git.1615542070.7841c34b7:
* monasca: fix monasca-server reinstall state check (SOC-11471)
Changes in documentation-suse-openstack-cloud:
- Update to version 8.20210512:
* Moved Monasca deployment to immediately after keystone (SOC-11525) (#1312)
- Update to version 8.20210511:
* Update the correct SLES version to suse-12.3 (SOC-11521) (#1321)
* Renamed the repo name from SLE12-SP3-HA to SLE-HA12-SP3 (SOC-11523) (#1320)
- Update to version 8.20210511:
* Add bm-power-status playbook to add sles compute section (#1317)
- Update to version 8.20210507:
* Add instructions for checking MySQL cert expiry (SOC-11422) (#1311)
- Update to version 8.20210304:
* Add nova and heat db purge cron jobs to maintenance section (SOC-9876) (#1307)
Changes in grafana:
- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)
* Prevent unauthenticated remote attackers from causing a DoS through the
snapshots API.
Changes in kibana:
- Ensure /etc/sysconfig/kibana is present
- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14,
ESA-2017-16)
* [4.6] ignore forked code for babel transpile build phase (#13483)
* Allow more than match queries in custom filters (#8614) (#10857)
* [state] don't make extra $location.replace() calls (#9954)
* [optimizer] move to querystring-browser package for up-to-date api
* [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls
* server: refactor log_interceptor to be more DRY (#9617)
* server: downgrade ECANCELED logs to debug (#9616)
* server: do not treat logged warnings as errors (#8746) (#9610)
* [server/logger] downgrade EPIPE errors to debug level (#9023)
* Add basepath when redirecting from a trailling slash (#9035)
* [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)
* [server/shortUrl] validate urls before shortening them
- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)
* This fixes an XSS vulnerability in URL fields
- Remove %dir declaration from /opt/kibana/optimize to ensure
no files owned by root end up in there
- Exclude /opt/kibana/optimize from %fdupes
- Restart service on upgrade
- Do not copy LICENSE.txt and README.txt to /opt/kibana
- Fix rpmlint warnings/errors
- Switch to explicit patch application
- Fix source URL
- Fix logic for systemd/systemv detection
Changes in openstack-heat-templates:
- Update to version 0.0.0+git.1623056900.7917e18:
* Fix zuul config for heat-templates-check
- Update to version 0.0.0+git.1621405516.71a0f7a:
* Remove testr
Changes in openstack-monasca-installer:
- Add 0001-fix-influxdb-stop-task.patch (SOC-11470)
- Add 0001-fix-cassandra-deployment.patch (SOC-11470)
Changes in openstack-nova:
- Update to version nova-16.1.9.dev92:
* Lowercase ironic driver hash ring and ignore case in cache
* Include only required fields in ironic node cache
* Add resource\_class to fields in ironic node cache
- Update to version nova-16.1.9.dev86:
* [stable-only] Move grenade jobs to experimental
* Update resources once in update\_available\_resource
* rt: Make resource tracker always invoking get\_inventory()
- Update to version nova-16.1.9.dev81:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
- Update to version nova-16.1.9.dev80:
* [placement] Add status and links fields to version document at /
Changes in openstack-nova:
- Update to version nova-16.1.9.dev92:
* Lowercase ironic driver hash ring and ignore case in cache
* Include only required fields in ironic node cache
* Add resource\_class to fields in ironic node cache
- Update to version nova-16.1.9.dev86:
* [stable-only] Move grenade jobs to experimental
* Update resources once in update\_available\_resource
* rt: Make resource tracker always invoking get\_inventory()
- Update to version nova-16.1.9.dev81:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
- Update to version nova-16.1.9.dev80:
* [placement] Add status and links fields to version document at /
Changes in python-Django:
- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)
* Fixed potential path-traversal via admindocs' TemplateDetailView.
- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)
* Prevented leading zeros in IPv4 addresses.
- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)
* Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file
uploads.
- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)
* Fixed potential directory-traversal via uploaded files
- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)
* Fixed web cache poisoning via django.utils.http.limited_parse_qsl()
Changes in python-eventlet:
- Add 0001-websocket-fd-leak-when-client-did-not-close-connecti.patch
- Add 0002-websocket-Limit-maximum-uncompressed-frame-length-to.patch (bsc#1185836 CVE-2021-21419)
* websocket: Limit maximum uncompressed frame length to 8MiB
Changes in python-py:
- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)
* svnwc: fix regular expression vulnerable to DoS in blame
functionality
Changes in python-pysaml2:
- Add %dir declaration for %{_licensedir}
- Fix CVE-2021-21238, bsc#1181277 with
0004-Strengthen-XSW-tests.patch ,
0005-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,
0006-Add-xsd-schemas.patch ,
0007-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .
This adds a dependency on python-xmlschema, which depends on
python-elementpath and build depends python-pathlib2, which depends on
python-scandir, thus all these need to be added for this to work.
The used python-xmlschema needs to support the sandbox argument
which was added in 1.2.0 and refined in 1.2.1, but that version
doesn't support python2, so a patched version that does both is
needed.
0009-Make-previous-commits-python2-compatible.patch to
not add a dependency on reportlib_resources and make other
changes python2 compatible.
- Fix CVE-2021-21239, bsc#1181278 with
0008-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch
Changes in venv-openstack-keystone:
- Add python-xmlschema and python-elementpath for new python-pysaml2 version.
Changes in python-xmlschema:
- Add missed BuildRequires on pathlib2
- Add 3 patches to backport sandbox argument, which is needed by a security fix
in python-pysaml2 and one patch to make backport python2 compatible.
- Upstream url changed
- Add rpmlintrc to make it work on Leap 42.3
- Update to 1.0.18:
* Fix for *ModelVisitor.iter_unordered_content()*
* Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode
* Fixed validation tests with all converters
* Added UnorderedConverter to validation tests
- Update to 1.0.17:
* Enhancement of validation-only speed (~15%)
* Added *is_valid()* and *iter_errors()* to module API
- Update to 1.0.16:
* Improved XMLResource class for working with compressed files
* Fix for validation with XSD wildcards and 'lax' process content
* Fix ambiguous items validation for xs:choice and xs:sequence models
- Handle UnicodeDecodeErrors during build process
- Update to 1.0.15:
* Improved XPath 2.0 bindings
* Added logging for schema initialization and building (handled with argument loglevel)
* Update encoding of collapsed contents with a new model based reordering method
* Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)
* Fixed half of failed W3C instance tests (remain 255 over 15344 tests)
- Initial commit, needed by pytest 5.1.2
Changes in python-elementpath:
- Update to 1.3.1:
* Improved schema proxy
* Improved XSD type matching using paths
* Cached parent path for XPathContext (only Python 3)
* Improve typed selection with TypedAttribute and TypedElement named-tuples
* Add iter_results to XPathContext
* Remove XMLSchemaProxy from package
* Fix descendant shortcut operator '//'
* Fix text() function
* Fix typed select of '(name)' token
* Fix 24-hour time for DateTime
- Skip test_hashing to fix 32bit builds
- Initial commit needed by python-xmlschema
Changes in python-six:
- Update in SLE-12 (bsc#1176784, jsc#ECO-3105, jsc#PM-2352)
- Fix testsuite on SLE-12
+ Add python to BuildRequires for suse_version less 1500
- Fix dbm deps as the MU for provides: python-dbm was not released
on sle12 yet
- Add requirement on pytest > 4.0 to see the pytest module works
with this MU
- Do not cause buildcycle with previous change but rather
install the egg-info prepared metadata from the tarball
- use setuptools for building to support pip 10.x (bsc#1166139)
- update to 1.14.0
* Add `six.assertNotRegex`
* `six.moves._dummy_thread` now points to the `_thread` module on
Python 3.9+. Python 3.7 and later requires threading and deprecated the
`_dummy_thread` module
* Remove support for Python 2.6 and Python 3.2
* `six.wraps` now ignores missing attributes
- Pull in dbm/gdbm module from python for testing
- update to 0.13.0:
- Issue #298, pull request #299: Add `six.moves.dbm_ndbm`.
- Issue #155: Add `six.moves.collections_abc`, which aliases the `collections`
module on Python 2-3.2 and the `collections.abc` on Python 3.3 and greater.
- Pull request #304: Re-add distutils fallback in `setup.py`.
- Pull request #305: On Python 3.7, `with_metaclass` supports classes using PEP
- Simplify the pytest call
- Fix pytest call
- Fixdocumentation package generating
- Change %pretrans back to %pre to fix bootstrap issue
boo#1123064 bsc#1143893
- Require just base python module, even full python is too much
and it is not required here
- Update to 0.12.0:
* `six.add_metaclass` now preserves `__qualname__` from the
original class.
* Add `six.ensure_binary`, `six.ensure_text`, and
`six.ensure_str`.
- Because of cyclical dependencies between six and Sphinx, we
need to to do multibuild.
- Include in SLE-12 (FATE#326838, bsc#1113302)
- remove egg-info directory in %pretrans
- fix egg-info directory pattern
- match any version of egg-info for a certain python version
- Break the cycilical dependency on python-setuptools.
- Remove argparse dependency
- build python3 subpackage (FATE#324435, bsc#1073879)
- remove egg-info directory before installation if it exists,
because setuptools produce directory and six switched to distutils
that produce a file
(and because rpm can't handle that by itself)
fixes bsc#1057496
- Fix Source url
- README->README.rst, add CHANGES
- update to version 1.11.0:
* Pull request #178: `with_metaclass` now properly proxies
`__prepare__` to the underlying metaclass.
* Pull request #191: Allow `with_metaclass` to work with metaclasses
implemented in C.
* Pull request #203: Add parse_http_list and parse_keqv_list to
moved urllib.request.
* Pull request #172 and issue #171: Add unquote_to_bytes to moved
urllib.parse.
* Pull request #167: Add `six.moves.getoutput`.
* Pull request #80: Add `six.moves.urllib_parse.splitvalue`.
* Pull request #75: Add `six.moves.email_mime_image`.
* Pull request #72: Avoid creating reference cycles through
tracebacks in `reraise`.
- Submit 1.9.0 to SLE-12 (fate#319030, fate#318838, bsc#940812)
- sanitize release line in specfile
Changes in rubygem-activerecord-session_store.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)
* This requires CVE-2019-16782.patch to be included in rubygem-actionpack-4_2
to work correctly.
Changes in venv-openstack-keystone:
- Add python-xmlschema and python-elementpath for new python-pysaml2 version.
- Add python-defusedxml (bsc#1019074)
- Inherit version number of venv from main component (SCRD-8523)
Patchnames
HPE-Helion-OpenStack-8-2021-2554,SUSE-2021-2554,SUSE-OpenStack-Cloud-8-2021-2554,SUSE-OpenStack-Cloud-Crowbar-8-2021-2554
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema ", title: "Title of the patch", }, { category: "description", text: "This update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema fixes the following issues:\n\nSecurity fixes included on this update:\n\ncassandra-kit:\n- CVE-2020-17516: Internode encryption enforcement vulnerability\n\ncassandra:\n- CVE-2020-17516: Internode encryption enforcement vulnerability\n- CVE-2017-5929 logback: Fixed a serialization vulnerability in SocketServer and ServerSocketReceiver\n\ncrowbar-core:\nCVE-2020-26247: Potentially XXE or SSRF attacks by parsed Nokogiri::XML::Schema\n\ngrafana:\n- CVE-2021-27358: Unauthenticated remote attackers to trigger a Denial of Service via a remote API call\n\nkibana:\n- CVE-2017-11481: Fixed an XSS via URL fields\n- CVE-2017-11499: Fixed a constant hashtable seeds vulnerability\n\npython-Django:\n- CVE-2021-28658: Potential directory-traversal via uploaded files\n- CVE-2021-31542: Potential directory-traversal via uploaded files\n- CVE-2021-33203: Potential directory traversal via admindocs\n- CVE-2021-33571: Possible indeterminate SSRF, RFI, and LFI attacks since validators accepted leading zeros in IPv4 addresses\n- CVE-2021-23336: Fixed web cache poisoning via django.utils.http.limited_parse_qsl\n\npython-eventlet:\n- CVE-2021-21419: Improper handling of highly compressed data and memory allocation with excessive size value\n\npython-pysaml2:\n- CVE-2021-21238: Fixed an improper verification of cryptographic signatures for signed SAML documents\n- CVE-2021-21239: Fixed an improper verification of cryptographic signatures when using CryptoBackendXmlSec1()_\n\npython-py:\n- CVE-2020-29651: Regular expression denial of service in svnwc.py\n\nrubygem-activerecord-session_store:\n- CVE-2019-25025: Fixed a hijack sessions by using timing attacks targeting the session id\nCVE-2019-16782\n\nNon-security fixes included on this update:\n\nChanges in ardana-cobbler:\n- Update to version 8.0+git.1614096566.e8c2b27:\n * Change install_recommended to true (bsc#1181828)\n\nChanges in cassandra:\n- update to 3.11.10 (bsc#1181689, CVE-2020-17516)\n * Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)\n * Reduce amount of allocations during batch statement execution (CASSANDRA-16201)\n * Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)\n * Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)\n * Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)\n * SASI's `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)\n * Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)\n * Improve empty hint file handling during startup (CASSANDRA-16162)\n * Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)\n * Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)\n * Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)\n * Synchronize transaction logs for JBOD (CASSANDRA-16225)\n * Fix the counting of cells per partition (CASSANDRA-16259)\n * Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)\n * Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)\n * Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)\n * Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)\n * Remove the SEPExecutor blocking behavior (CASSANDRA-16186)\n * Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)\n * Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)\n * Wait for schema agreement when bootstrapping (CASSANDRA-15158)\n * Fix the histogram merge of the table metrics (CASSANDRA-16259)\n * Synchronize Keyspace instance store/clear (CASSANDRA-16210)\n * Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)\n * Fix memory leak in CompressedChunkReader (CASSANDRA-15880)\n * Don't attempt value skipping with mixed version cluster (CASSANDRA-15833)\n * Avoid failing compactions with very large partitions (CASSANDRA-15164)\n * Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)\n * Fix OOM when terminating repair session (CASSANDRA-15902)\n * Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)\n * Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)\n * Handle unexpected columns due to schema races (CASSANDRA-15899)\n * Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)\n * Package tools/bin scripts as executable (CASSANDRA-16151)\n * Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)\n * Correctly interpret SASI's `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)\n * Fix short read protection for GROUP BY queries (CASSANDRA-15459)\n * Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)\nMerged from 3.0:\n * Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)\n * Fix gossip shutdown order (CASSANDRA-15816)\n * Remove broken 'defrag-on-read' optimization (CASSANDRA-15432)\n * Check for endpoint collision with hibernating nodes (CASSANDRA-14599)\n * Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)\n * stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)\n * Forbid altering UDTs used in partition keys (CASSANDRA-15933)\n * Fix empty/null json string representation (CASSANDRA-15896)\n * 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)\n * Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)\nMerged from 2.2:\n * Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)\n * Only allow strings to be passed to JMX authentication (CASSANDRA-16077)\n * Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)\n * Upgrade Jackson to 2.9.10 (CASSANDRA-15867)\n * Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)\n * Allow sstableloader to use SSL on the native port (CASSANDRA-14904)\n * Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)\n * Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)\n * Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)\n * Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)\n * Add token to tombstone warning and error messages (CASSANDRA-15890)\n * Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)\n * Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)\n * Fix replica-side filtering returning stale data with CL > ONE (CASSANDRA-8272, CASSANDRA-8273)\n * Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)\n * Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)\n * EmptyType doesn't override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)\n * Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)\n * Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)\n * liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)\n * Fix Debian init start/stop (CASSANDRA-15770)\n * Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)\n * Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)\n * Allow selecting static column only when querying static index (CASSANDRA-14242)\n * cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)\n * Don't skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)\n * Memtable memory allocations may deadlock (CASSANDRA-15367)\n * Run evictFromMembership in GossipStage (CASSANDRA-15592)\n * Fix nomenclature of allow and deny lists (CASSANDRA-15862)\n * Remove generated files from source artifact (CASSANDRA-15849)\n * Remove duplicated tools binaries from tarballs (CASSANDRA-15768)\n * Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)\n * Disable JMX rebinding (CASSANDRA-15653)\n * Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)\n * Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)\n * Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)\n * Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)\n * Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)\n * Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)\n * Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)\n * Fix SELECT JSON formatting for the 'duration' type (CASSANDRA-15075)\n * Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)\n * Update nodetool help stop output (CASSANDRA-15401)\n * Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)\n * Include updates to static column in mutation size calculations (CASSANDRA-15293)\n * Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)\n * GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)\n * Fix sstabledump's position key value when partitions have multiple rows (CASSANDRA-14721)\n * Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)\n * Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11\n (CASSANDRA-15441)\n * Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)\n * Fix various data directory prefix matching issues (CASSANDRA-13974)\n * Minimize clustering values in metadata collector (CASSANDRA-15400)\n * Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)\n * validate value sizes in LegacyLayout (CASSANDRA-15373)\n * Ensure that tracing doesn't break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)\n * Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)\n * Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)\n * Fix race condition when setting bootstrap flags (CASSANDRA-14878)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SELECT JSON output for empty blobs (CASSANDRA-15435)\n * In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)\n * In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)\n * Make sure user defined compaction transactions are always closed (CASSANDRA-15123)\n * Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)\n * Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)\n * Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)\n * Add ability to cap max negotiable protocol version (CASSANDRA-15193)\n * Gossip tokens on startup if available (CASSANDRA-15335)\n * Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)\n * Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)\n * Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)\n * Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)\n * Filter sstables earlier when running cleanup (CASSANDRA-15100)\n * Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)\n * Avoid updating unchanged gossip states (CASSANDRA-15097)\n * Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)\n * Prevent client requests from blocking on executor task queue (CASSANDRA-15013)\n * Toughen up column drop/recreate type validations (CASSANDRA-15204)\n * LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)\n * Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)\n * Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)\n * Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)\n * Handle paging states serialized with a different version than the session's (CASSANDRA-15176)\n * Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)\n * Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)\n * Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)\n * Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)\n * Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)\n * Fix mixed mode partition range scans with limit (CASSANDRA-15072)\n * cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)\n * Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)\n * Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)\n * Improve `nodetool status -r` speed (CASSANDRA-14847)\n * Improve merkle tree size and time on heap (CASSANDRA-14096)\n * Add missing commands to nodetool_completion (CASSANDRA-14916)\n * Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)\n * Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)\n * Handle exceptions during authentication/authorization (CASSANDRA-15041)\n * Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)\n * Fix index summary redistribution cancellation (CASSANDRA-15045)\n * Fixing invalid CQL in security documentation (CASSANDRA-15020)\n * Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)\n * Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)\n * Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)\n * Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser\n * Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)\n * If SizeEstimatesRecorder misses a 'onDropTable' notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)\n * Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)\n * Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)\n * Fix cassandra-stress write hang with default options (CASSANDRA-14616)\n * Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)\n * Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)\n * Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)\n * RangeTombstoneList doesn't properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)\n * Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)\n * Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)\n * Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)\n * Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)\n * Move TWCS message 'No compaction necessary for bucket size' to Trace level (CASSANDRA-14884)\n * Sstable min/max metadata can cause data loss (CASSANDRA-14861)\n * Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)\n * Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)\n * Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)\n * Reverse order reads can return incomplete results (CASSANDRA-14803)\n * Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)\n * Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)\n * DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)\n * Fix corrupted collection deletions for dropped columns in 3.0 2.{1,2} messages (CASSANDRA-14568)\n * Fix corrupted static collection deletions in 3.0 2.{1,2} messages (CASSANDRA-14568)\n * Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)\n * Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)\n * Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)\n * Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)\n * sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)\n * Fix reading columns with non-UTF names from schema (CASSANDRA-14468)\n * Don't enable client transports when bootstrap is pending (CASSANDRA-14525)\n * MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)\n * Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)\n * Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)\n * Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)\n * Validate supported column type with SASI analyzer (CASSANDRA-13669)\n * Remove BTree.Builder Recycler to reduce memory usage (CASSANDRA-13929)\n * Reduce nodetool GC thread count (CASSANDRA-14475)\n * Fix New SASI view creation during Index Redistribution (CASSANDRA-14055)\n * Remove string formatting lines from BufferPool hot path (CASSANDRA-14416)\n * Update metrics to 3.1.5 (CASSANDRA-12924)\n * Detect OpenJDK jvm type and architecture (CASSANDRA-12793)\n * Don't use guava collections in the non-system keyspace jmx attributes (CASSANDRA-12271)\n * Allow existing nodes to use all peers in shadow round (CASSANDRA-13851)\n * Fix cqlsh to read connection.ssl cqlshrc option again (CASSANDRA-14299)\n * Downgrade log level to trace for CommitLogSegmentManager (CASSANDRA-14370)\n * CQL fromJson(null) throws NullPointerException (CASSANDRA-13891)\n * Serialize empty buffer as empty string for json output format (CASSANDRA-14245)\n * Allow logging implementation to be interchanged for embedded testing (CASSANDRA-13396)\n * SASI tokenizer for simple delimiter based entries (CASSANDRA-14247)\n * Fix Loss of digits when doing CAST from varint/bigint to decimal (CASSANDRA-14170)\n * RateBasedBackPressure unnecessarily invokes a lock on the Guava RateLimiter (CASSANDRA-14163)\n * Fix wildcard GROUP BY queries (CASSANDRA-14209)\n * Fix corrupted static collection deletions in 3.0 -> 2.{1,2} messages (CASSANDRA-14568)\n * Fix potential IndexOutOfBoundsException with counters (CASSANDRA-14167)\n * Always close RT markers returned by ReadCommand#executeLocally() (CASSANDRA-14515)\n * Reverse order queries with range tombstones can cause data loss (CASSANDRA-14513)\n * Fix regression of lagging commitlog flush log message (CASSANDRA-14451)\n * Add Missing dependencies in pom-all (CASSANDRA-14422)\n * Cleanup StartupClusterConnectivityChecker and PING Verb (CASSANDRA-14447)\n * Fix deprecated repair error notifications from 3.x clusters to legacy JMX clients (CASSANDRA-13121)\n * Cassandra not starting when using enhanced startup scripts in windows (CASSANDRA-14418)\n * Fix progress stats and units in compactionstats (CASSANDRA-12244)\n * Better handle missing partition columns in system_schema.columns (CASSANDRA-14379)\n * Delay hints store excise by write timeout to avoid race with decommission (CASSANDRA-13740)\n * Deprecate background repair and probablistic read_repair_chance table options\n (CASSANDRA-13910)\n * Add missed CQL keywords to documentation (CASSANDRA-14359)\n * Fix unbounded validation compactions on repair / revert CASSANDRA-13797 (CASSANDRA-14332)\n * Avoid deadlock when running nodetool refresh before node is fully up (CASSANDRA-14310)\n * Handle all exceptions when opening sstables (CASSANDRA-14202)\n * Handle incompletely written hint descriptors during startup (CASSANDRA-14080)\n * Handle repeat open bound from SRP in read repair (CASSANDRA-14330)\n * Respect max hint window when hinting for LWT (CASSANDRA-14215)\n * Adding missing WriteType enum values to v3, v4, and v5 spec (CASSANDRA-13697)\n * Don't regenerate bloomfilter and summaries on startup (CASSANDRA-11163)\n * Fix NPE when performing comparison against a null frozen in LWT (CASSANDRA-14087)\n * Log when SSTables are deleted (CASSANDRA-14302)\n * Fix batch commitlog sync regression (CASSANDRA-14292)\n * Write to pending endpoint when view replica is also base replica (CASSANDRA-14251)\n * Chain commit log marker potential performance regression in batch commit mode (CASSANDRA-14194)\n * Fully utilise specified compaction threads (CASSANDRA-14210)\n * Pre-create deletion log records to finish compactions quicker (CASSANDRA-12763)\n * Fix bug that prevented compaction of SSTables after full repairs (CASSANDRA-14423)\n * Incorrect counting of pending messages in OutboundTcpConnection (CASSANDRA-11551)\n * Fix compaction failure caused by reading un-flushed data (CASSANDRA-12743)\n * Use Bounds instead of Range for sstables in anticompaction (CASSANDRA-14411)\n * Fix JSON queries with IN restrictions and ORDER BY clause (CASSANDRA-14286)\n * Backport circleci yaml (CASSANDRA-14240)\n * Check checksum before decompressing data (CASSANDRA-14284)\n * CVE-2017-5929 Security vulnerability in Logback warning in NEWS.txt (CASSANDRA-14183)\n- Use %license macro\n\nChanges in cassandra-kit:\n- Update to Cassandra 3.11.10 (bsc#1181689, CVE-2020-17516)\n\nChanges in crowbar-core:\n- Update to version 5.0+git.1622489449.a8e60e238:\n * avoid v4.1.5 of delayed_job_active_record (noref)\n * add CVE-2020-26247 to travis ignore list (bsc#1180507)\n\nChanges in crowbar-openstack:\n- Update to version 5.0+git.1616001417.67fd9c2a1:\n * monasca: restart Kibana on update (bsc#1044849)\n\n- Update to version 5.0+git.1615542070.7841c34b7:\n * monasca: fix monasca-server reinstall state check (SOC-11471)\n\nChanges in documentation-suse-openstack-cloud:\n- Update to version 8.20210512:\n * Moved Monasca deployment to immediately after keystone (SOC-11525) (#1312)\n\n- Update to version 8.20210511:\n * Update the correct SLES version to suse-12.3 (SOC-11521) (#1321)\n * Renamed the repo name from SLE12-SP3-HA to SLE-HA12-SP3 (SOC-11523) (#1320)\n\n- Update to version 8.20210511:\n * Add bm-power-status playbook to add sles compute section (#1317)\n\n- Update to version 8.20210507:\n * Add instructions for checking MySQL cert expiry (SOC-11422) (#1311)\n\n- Update to version 8.20210304:\n * Add nova and heat db purge cron jobs to maintenance section (SOC-9876) (#1307)\n\nChanges in grafana:\n- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)\n * Prevent unauthenticated remote attackers from causing a DoS through the\n snapshots API.\n\nChanges in kibana:\n- Ensure /etc/sysconfig/kibana is present\n\n- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, \n ESA-2017-16)\n * [4.6] ignore forked code for babel transpile build phase (#13483)\n * Allow more than match queries in custom filters (#8614) (#10857)\n * [state] don't make extra $location.replace() calls (#9954)\n * [optimizer] move to querystring-browser package for up-to-date api\n * [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls\n * server: refactor log_interceptor to be more DRY (#9617)\n * server: downgrade ECANCELED logs to debug (#9616)\n * server: do not treat logged warnings as errors (#8746) (#9610)\n * [server/logger] downgrade EPIPE errors to debug level (#9023)\n * Add basepath when redirecting from a trailling slash (#9035)\n * [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)\n * [server/shortUrl] validate urls before shortening them\n- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)\n * This fixes an XSS vulnerability in URL fields\n- Remove %dir declaration from /opt/kibana/optimize to ensure\n no files owned by root end up in there\n- Exclude /opt/kibana/optimize from %fdupes\n- Restart service on upgrade\n- Do not copy LICENSE.txt and README.txt to /opt/kibana\n- Fix rpmlint warnings/errors\n- Switch to explicit patch application\n- Fix source URL\n- Fix logic for systemd/systemv detection\n\nChanges in openstack-heat-templates:\n- Update to version 0.0.0+git.1623056900.7917e18:\n * Fix zuul config for heat-templates-check\n\n- Update to version 0.0.0+git.1621405516.71a0f7a:\n * Remove testr\n\nChanges in openstack-monasca-installer:\n- Add 0001-fix-influxdb-stop-task.patch (SOC-11470)\n- Add 0001-fix-cassandra-deployment.patch (SOC-11470)\n\nChanges in openstack-nova:\n- Update to version nova-16.1.9.dev92:\n * Lowercase ironic driver hash ring and ignore case in cache\n * Include only required fields in ironic node cache\n * Add resource\\_class to fields in ironic node cache\n\n- Update to version nova-16.1.9.dev86:\n * [stable-only] Move grenade jobs to experimental\n * Update resources once in update\\_available\\_resource\n * rt: Make resource tracker always invoking get\\_inventory()\n\n- Update to version nova-16.1.9.dev81:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n\n- Update to version nova-16.1.9.dev80:\n * [placement] Add status and links fields to version document at /\n\nChanges in openstack-nova:\n- Update to version nova-16.1.9.dev92:\n * Lowercase ironic driver hash ring and ignore case in cache\n * Include only required fields in ironic node cache\n * Add resource\\_class to fields in ironic node cache\n\n- Update to version nova-16.1.9.dev86:\n * [stable-only] Move grenade jobs to experimental\n * Update resources once in update\\_available\\_resource\n * rt: Make resource tracker always invoking get\\_inventory()\n\n- Update to version nova-16.1.9.dev81:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n\n- Update to version nova-16.1.9.dev80:\n * [placement] Add status and links fields to version document at /\n\nChanges in python-Django:\n- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)\n * Fixed potential path-traversal via admindocs' TemplateDetailView.\n- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)\n * Prevented leading zeros in IPv4 addresses.\n\n- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)\n * Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file\n uploads.\n\n- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)\n * Fixed potential directory-traversal via uploaded files\n\n- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)\n * Fixed web cache poisoning via django.utils.http.limited_parse_qsl()\n\nChanges in python-eventlet:\n- Add 0001-websocket-fd-leak-when-client-did-not-close-connecti.patch \n- Add 0002-websocket-Limit-maximum-uncompressed-frame-length-to.patch (bsc#1185836 CVE-2021-21419)\n * websocket: Limit maximum uncompressed frame length to 8MiB\n\nChanges in python-py:\n- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)\n * svnwc: fix regular expression vulnerable to DoS in blame\n functionality\n\nChanges in python-pysaml2:\n- Add %dir declaration for %{_licensedir}\n\n- Fix CVE-2021-21238, bsc#1181277 with\n 0004-Strengthen-XSW-tests.patch ,\n 0005-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,\n 0006-Add-xsd-schemas.patch ,\n 0007-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .\n This adds a dependency on python-xmlschema, which depends on\n python-elementpath and build depends python-pathlib2, which depends on\n python-scandir, thus all these need to be added for this to work.\n The used python-xmlschema needs to support the sandbox argument\n which was added in 1.2.0 and refined in 1.2.1, but that version\n doesn't support python2, so a patched version that does both is\n needed.\n 0009-Make-previous-commits-python2-compatible.patch to\n not add a dependency on reportlib_resources and make other\n changes python2 compatible.\n- Fix CVE-2021-21239, bsc#1181278 with\n 0008-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch\n\nChanges in venv-openstack-keystone:\n- Add python-xmlschema and python-elementpath for new python-pysaml2 version.\n\nChanges in python-xmlschema:\n\n- Add missed BuildRequires on pathlib2\n\n- Add 3 patches to backport sandbox argument, which is needed by a security fix\n in python-pysaml2 and one patch to make backport python2 compatible.\n- Upstream url changed\n- Add rpmlintrc to make it work on Leap 42.3\n- Update to 1.0.18:\n * Fix for *ModelVisitor.iter_unordered_content()*\n * Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode\n * Fixed validation tests with all converters\n * Added UnorderedConverter to validation tests\n- Update to 1.0.17:\n * Enhancement of validation-only speed (~15%)\n * Added *is_valid()* and *iter_errors()* to module API\n- Update to 1.0.16:\n * Improved XMLResource class for working with compressed files\n * Fix for validation with XSD wildcards and 'lax' process content\n * Fix ambiguous items validation for xs:choice and xs:sequence models\n\n- Handle UnicodeDecodeErrors during build process\n\n- Update to 1.0.15:\n * Improved XPath 2.0 bindings\n * Added logging for schema initialization and building (handled with argument loglevel)\n * Update encoding of collapsed contents with a new model based reordering method\n * Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)\n * Fixed half of failed W3C instance tests (remain 255 over 15344 tests)\n\n- Initial commit, needed by pytest 5.1.2\n\nChanges in python-elementpath:\n\n- Update to 1.3.1:\n * Improved schema proxy\n * Improved XSD type matching using paths\n * Cached parent path for XPathContext (only Python 3)\n * Improve typed selection with TypedAttribute and TypedElement named-tuples\n * Add iter_results to XPathContext\n * Remove XMLSchemaProxy from package\n * Fix descendant shortcut operator '//'\n * Fix text() function\n * Fix typed select of '(name)' token\n * Fix 24-hour time for DateTime\n\n- Skip test_hashing to fix 32bit builds\n\n- Initial commit needed by python-xmlschema\n\nChanges in python-six:\n- Update in SLE-12 (bsc#1176784, jsc#ECO-3105, jsc#PM-2352)\n\n- Fix testsuite on SLE-12\n + Add python to BuildRequires for suse_version less 1500\n\n- Fix dbm deps as the MU for provides: python-dbm was not released\n on sle12 yet\n- Add requirement on pytest > 4.0 to see the pytest module works\n with this MU\n\n- Do not cause buildcycle with previous change but rather\n install the egg-info prepared metadata from the tarball\n\n- use setuptools for building to support pip 10.x (bsc#1166139)\n\n- update to 1.14.0\n * Add `six.assertNotRegex`\n * `six.moves._dummy_thread` now points to the `_thread` module on\n Python 3.9+. Python 3.7 and later requires threading and deprecated the\n `_dummy_thread` module\n * Remove support for Python 2.6 and Python 3.2\n * `six.wraps` now ignores missing attributes\n\n- Pull in dbm/gdbm module from python for testing\n\n- update to 0.13.0:\n - Issue #298, pull request #299: Add `six.moves.dbm_ndbm`.\n - Issue #155: Add `six.moves.collections_abc`, which aliases the `collections`\n module on Python 2-3.2 and the `collections.abc` on Python 3.3 and greater.\n - Pull request #304: Re-add distutils fallback in `setup.py`.\n - Pull request #305: On Python 3.7, `with_metaclass` supports classes using PEP\n\n- Simplify the pytest call\n\n- Fix pytest call\n- Fixdocumentation package generating\n\n- Change %pretrans back to %pre to fix bootstrap issue\n boo#1123064 bsc#1143893\n\n- Require just base python module, even full python is too much\n and it is not required here\n\n- Update to 0.12.0:\n * `six.add_metaclass` now preserves `__qualname__` from the\n original class.\n * Add `six.ensure_binary`, `six.ensure_text`, and\n `six.ensure_str`.\n- Because of cyclical dependencies between six and Sphinx, we\n need to to do multibuild.\n\n- Include in SLE-12 (FATE#326838, bsc#1113302)\n\n- remove egg-info directory in %pretrans\n- fix egg-info directory pattern\n- match any version of egg-info for a certain python version\n\n- Break the cycilical dependency on python-setuptools.\n\n- Remove argparse dependency\n\n- build python3 subpackage (FATE#324435, bsc#1073879)\n\n- remove egg-info directory before installation if it exists,\n because setuptools produce directory and six switched to distutils\n that produce a file\n (and because rpm can't handle that by itself)\n fixes bsc#1057496\n\n- Fix Source url\n\n- README->README.rst, add CHANGES\n- update to version 1.11.0:\n * Pull request #178: `with_metaclass` now properly proxies\n `__prepare__` to the underlying metaclass.\n * Pull request #191: Allow `with_metaclass` to work with metaclasses\n implemented in C.\n * Pull request #203: Add parse_http_list and parse_keqv_list to\n moved urllib.request.\n * Pull request #172 and issue #171: Add unquote_to_bytes to moved\n urllib.parse.\n * Pull request #167: Add `six.moves.getoutput`.\n * Pull request #80: Add `six.moves.urllib_parse.splitvalue`.\n * Pull request #75: Add `six.moves.email_mime_image`.\n * Pull request #72: Avoid creating reference cycles through\n tracebacks in `reraise`.\n\n- Submit 1.9.0 to SLE-12 (fate#319030, fate#318838, bsc#940812)\n\n- sanitize release line in specfile\n\nChanges in rubygem-activerecord-session_store.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)\n * This requires CVE-2019-16782.patch to be included in rubygem-actionpack-4_2\n to work correctly.\n\nChanges in venv-openstack-keystone:\n- Add python-xmlschema and python-elementpath for new python-pysaml2 version.\n\n- Add python-defusedxml (bsc#1019074)\n\n- Inherit version number of venv from main component (SCRD-8523)\n\n ", title: "Description of the patch", }, { category: "details", text: "HPE-Helion-OpenStack-8-2021-2554,SUSE-2021-2554,SUSE-OpenStack-Cloud-8-2021-2554,SUSE-OpenStack-Cloud-Crowbar-8-2021-2554", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2554-1.json", }, { category: "self", summary: "URL for SUSE-SU-2021:2554-1", url: "https://www.suse.com/support/update/announcement/2021/suse-su-20212554-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2021:2554-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009227.html", }, { category: "self", summary: "SUSE Bug 1019074", url: "https://bugzilla.suse.com/1019074", }, { category: "self", summary: "SUSE Bug 1044849", url: "https://bugzilla.suse.com/1044849", }, { category: "self", summary: "SUSE Bug 1057496", url: "https://bugzilla.suse.com/1057496", }, { category: "self", summary: "SUSE Bug 1073879", url: "https://bugzilla.suse.com/1073879", }, { category: "self", summary: "SUSE Bug 1113302", url: "https://bugzilla.suse.com/1113302", }, { category: "self", summary: "SUSE Bug 1123064", url: "https://bugzilla.suse.com/1123064", }, { category: "self", summary: "SUSE Bug 1143893", url: "https://bugzilla.suse.com/1143893", }, { category: "self", summary: "SUSE Bug 1166139", url: "https://bugzilla.suse.com/1166139", }, { category: "self", summary: "SUSE Bug 1176784", url: "https://bugzilla.suse.com/1176784", }, { category: "self", summary: "SUSE Bug 1179805", url: "https://bugzilla.suse.com/1179805", }, { category: "self", summary: "SUSE Bug 1180507", url: "https://bugzilla.suse.com/1180507", }, { category: "self", summary: "SUSE Bug 1181277", url: "https://bugzilla.suse.com/1181277", }, { category: "self", summary: "SUSE Bug 1181278", url: "https://bugzilla.suse.com/1181278", }, { category: "self", summary: "SUSE Bug 1181689", url: "https://bugzilla.suse.com/1181689", }, { category: "self", summary: "SUSE Bug 1181828", url: "https://bugzilla.suse.com/1181828", }, { category: "self", summary: "SUSE Bug 1182433", url: "https://bugzilla.suse.com/1182433", }, { category: "self", summary: "SUSE Bug 1183174", url: "https://bugzilla.suse.com/1183174", }, { category: "self", summary: "SUSE Bug 1183803", url: "https://bugzilla.suse.com/1183803", }, { category: "self", summary: "SUSE Bug 1184148", url: "https://bugzilla.suse.com/1184148", }, { category: "self", summary: "SUSE Bug 1185623", url: "https://bugzilla.suse.com/1185623", }, { category: "self", summary: "SUSE Bug 1185836", url: "https://bugzilla.suse.com/1185836", }, { category: "self", summary: "SUSE Bug 1186608", url: "https://bugzilla.suse.com/1186608", }, { category: "self", summary: "SUSE Bug 1186611", url: "https://bugzilla.suse.com/1186611", }, { category: "self", summary: "SUSE Bug 940812", url: "https://bugzilla.suse.com/940812", }, { category: "self", summary: "SUSE CVE CVE-2017-11481 page", url: "https://www.suse.com/security/cve/CVE-2017-11481/", }, { category: "self", summary: "SUSE CVE CVE-2017-11499 page", url: "https://www.suse.com/security/cve/CVE-2017-11499/", }, { category: "self", summary: "SUSE CVE CVE-2017-5929 page", url: "https://www.suse.com/security/cve/CVE-2017-5929/", }, { category: "self", summary: "SUSE CVE CVE-2019-25025 page", url: "https://www.suse.com/security/cve/CVE-2019-25025/", }, { category: "self", summary: "SUSE CVE CVE-2020-17516 page", url: "https://www.suse.com/security/cve/CVE-2020-17516/", }, { category: "self", summary: "SUSE CVE CVE-2020-26247 page", url: "https://www.suse.com/security/cve/CVE-2020-26247/", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, { category: "self", summary: "SUSE CVE CVE-2021-21238 page", url: "https://www.suse.com/security/cve/CVE-2021-21238/", }, { category: "self", summary: "SUSE CVE CVE-2021-21239 page", url: "https://www.suse.com/security/cve/CVE-2021-21239/", }, { category: "self", summary: "SUSE CVE CVE-2021-21419 page", url: "https://www.suse.com/security/cve/CVE-2021-21419/", }, { category: "self", summary: "SUSE CVE CVE-2021-23336 page", url: "https://www.suse.com/security/cve/CVE-2021-23336/", }, { category: "self", summary: "SUSE CVE CVE-2021-27358 page", url: "https://www.suse.com/security/cve/CVE-2021-27358/", }, { category: "self", summary: "SUSE CVE CVE-2021-28658 page", url: "https://www.suse.com/security/cve/CVE-2021-28658/", }, { category: "self", summary: "SUSE CVE CVE-2021-31542 page", url: "https://www.suse.com/security/cve/CVE-2021-31542/", }, { category: "self", summary: "SUSE CVE CVE-2021-33203 page", url: "https://www.suse.com/security/cve/CVE-2021-33203/", }, { category: "self", summary: "SUSE CVE CVE-2021-33571 page", url: "https://www.suse.com/security/cve/CVE-2021-33571/", }, ], title: "Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema ", tracking: { current_release_date: "2021-07-28T15:27:22Z", generator: { date: "2021-07-28T15:27:22Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2021:2554-1", initial_release_date: "2021-07-28T15:27:22Z", revision_history: [ { date: "2021-07-28T15:27:22Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "cassandra-3.11.10-5.3.5.aarch64", product: { name: "cassandra-3.11.10-5.3.5.aarch64", product_id: "cassandra-3.11.10-5.3.5.aarch64", }, }, { category: "product_version", name: "cassandra-javadoc-3.11.10-5.3.5.aarch64", product: { name: "cassandra-javadoc-3.11.10-5.3.5.aarch64", product_id: "cassandra-javadoc-3.11.10-5.3.5.aarch64", }, }, { category: "product_version", name: "cassandra-tools-3.11.10-5.3.5.aarch64", product: { name: "cassandra-tools-3.11.10-5.3.5.aarch64", product_id: "cassandra-tools-3.11.10-5.3.5.aarch64", }, }, { category: "product_version", name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", product: { name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", product_id: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", product: { name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", product_id: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", }, }, { category: "product_version", name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", product: { name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", product_id: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.aarch64", }, }, { category: "product_version", name: "grafana-6.7.4-4.18.2.aarch64", product: { name: "grafana-6.7.4-4.18.2.aarch64", product_id: "grafana-6.7.4-4.18.2.aarch64", }, }, { category: "product_version", name: "kibana-4.6.6-3.9.2.aarch64", product: { name: "kibana-4.6.6-3.9.2.aarch64", product_id: "kibana-4.6.6-3.9.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.aarch64", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.aarch64", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.aarch64", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.aarch64", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", product: { name: "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", product_id: "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", }, }, { category: "product_version", name: "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", product: { name: "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", product_id: "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", product: { name: "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", product_id: "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", product: { name: "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", product_id: "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", product: { name: "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", product_id: "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", product: { name: "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", product_id: "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", product: { name: "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", product_id: "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", product: { name: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", product_id: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", }, }, { category: "product_version", name: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch", product: { name: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch", product_id: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch", }, }, { category: "product_version", name: "openstack-nova-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "python-Django-1.11.29-3.25.3.noarch", product: { name: "python-Django-1.11.29-3.25.3.noarch", product_id: "python-Django-1.11.29-3.25.3.noarch", }, }, { category: "product_version", name: "python-elementpath-1.3.1-1.3.2.noarch", product: { name: "python-elementpath-1.3.1-1.3.2.noarch", product_id: "python-elementpath-1.3.1-1.3.2.noarch", }, }, { category: "product_version", name: "python-eventlet-0.20.0-6.3.3.noarch", product: { name: "python-eventlet-0.20.0-6.3.3.noarch", product_id: "python-eventlet-0.20.0-6.3.3.noarch", }, }, { category: "product_version", name: "python-nova-16.1.9~dev92-3.48.5.noarch", product: { name: "python-nova-16.1.9~dev92-3.48.5.noarch", product_id: "python-nova-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "python-py-1.4.34-3.3.3.noarch", product: { name: "python-py-1.4.34-3.3.3.noarch", product_id: "python-py-1.4.34-3.3.3.noarch", }, }, { category: "product_version", name: "python-pysaml2-4.0.2-5.9.2.noarch", product: { name: "python-pysaml2-4.0.2-5.9.2.noarch", product_id: "python-pysaml2-4.0.2-5.9.2.noarch", }, }, { category: "product_version", name: "python-xmlschema-1.0.18-1.3.3.noarch", product: { name: "python-xmlschema-1.0.18-1.3.3.noarch", product_id: "python-xmlschema-1.0.18-1.3.3.noarch", }, }, { category: "product_version", name: "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", product: { name: "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", product_id: "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", }, }, { category: "product_version", name: "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", product: { name: "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", product_id: "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", }, }, { category: "product_version", name: "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", product: { name: "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", product_id: "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", }, }, { category: "product_version", name: "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", product: { name: "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", product_id: "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", }, }, { category: "product_version", name: "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", product: { name: "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", product_id: "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", }, }, { category: "product_version", name: "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", product: { name: "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", product_id: "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", }, }, { category: "product_version", name: "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", product: { name: "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", product_id: "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", }, }, { category: "product_version", name: "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", product: { name: "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", product_id: "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", }, }, { category: "product_version", name: "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", product: { name: "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", product_id: "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", }, }, { category: "product_version", name: "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", product: { name: "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", product_id: "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", }, }, { category: "product_version", name: "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", product: { name: "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", product_id: "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", }, }, { category: "product_version", name: "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", product: { name: "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", product_id: "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", }, }, { category: "product_version", name: "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", product: { name: "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", product_id: "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", product: { name: "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", product_id: "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", product: { name: "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", product_id: "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", }, }, { category: "product_version", name: "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", product: { name: "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", product_id: "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", }, }, { category: "product_version", name: "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", product: { name: "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", product_id: "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", }, }, { category: "product_version", name: "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", product: { name: "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", product_id: "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", }, }, { category: "product_version", name: "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", product: { name: "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", product_id: "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", }, }, { category: "product_version", name: "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", product: { name: "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", product_id: "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", }, }, { category: "product_version", name: "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", product: { name: "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", product_id: "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", }, }, { category: "product_version", name: "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", product: { name: "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", product_id: "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", }, }, { category: "product_version", name: "cassandra-kit-3.11.10-3.3.2.noarch", product: { name: "cassandra-kit-3.11.10-3.3.2.noarch", product_id: "cassandra-kit-3.11.10-3.3.2.noarch", }, }, { category: "product_version", name: "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", product: { name: "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", product_id: "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-socmmsoperator-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-socmmsoperator-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-socmmsoperator-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-socmosoperator-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-socmosoperator-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-socmosoperator-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-socmoverview-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-socmoverview-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-socmoverview-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", product: { name: "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", product_id: "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", }, }, { category: "product_version", name: "openstack-nova-network-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-network-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-network-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "openstack-nova-test-16.1.9~dev92-3.48.5.noarch", product: { name: "openstack-nova-test-16.1.9~dev92-3.48.5.noarch", product_id: "openstack-nova-test-16.1.9~dev92-3.48.5.noarch", }, }, { category: "product_version", name: "python-eventlet-doc-0.20.0-6.3.3.noarch", product: { name: "python-eventlet-doc-0.20.0-6.3.3.noarch", product_id: "python-eventlet-doc-0.20.0-6.3.3.noarch", }, }, { category: "product_version", name: "python-six-1.14.0-3.3.1.noarch", product: { name: "python-six-1.14.0-3.3.1.noarch", product_id: "python-six-1.14.0-3.3.1.noarch", }, }, { category: "product_version", name: "python-six-doc-1.14.0-3.3.1.noarch", product: { name: "python-six-doc-1.14.0-3.3.1.noarch", product_id: "python-six-doc-1.14.0-3.3.1.noarch", }, }, { category: "product_version", name: "python3-Django-1.11.29-3.25.3.noarch", product: { name: "python3-Django-1.11.29-3.25.3.noarch", product_id: "python3-Django-1.11.29-3.25.3.noarch", }, }, { category: "product_version", name: "python3-elementpath-1.3.1-1.3.2.noarch", product: { name: "python3-elementpath-1.3.1-1.3.2.noarch", product_id: "python3-elementpath-1.3.1-1.3.2.noarch", }, }, { category: "product_version", name: "python3-py-1.4.34-3.3.3.noarch", product: { name: "python3-py-1.4.34-3.3.3.noarch", product_id: "python3-py-1.4.34-3.3.3.noarch", }, }, { category: "product_version", name: "python3-six-1.14.0-3.3.1.noarch", product: { name: "python3-six-1.14.0-3.3.1.noarch", product_id: "python3-six-1.14.0-3.3.1.noarch", }, }, { category: "product_version", name: "python3-xmlschema-1.0.18-1.3.3.noarch", product: { name: "python3-xmlschema-1.0.18-1.3.3.noarch", product_id: "python3-xmlschema-1.0.18-1.3.3.noarch", }, }, { category: "product_version", name: "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", product: { name: "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", product_id: "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", }, }, { category: "product_version", name: "venv-openstack-zaqar-x86_64-5.0.1-10.14.3.noarch", product: { name: "venv-openstack-zaqar-x86_64-5.0.1-10.14.3.noarch", product_id: "venv-openstack-zaqar-x86_64-5.0.1-10.14.3.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "cassandra-3.11.10-5.3.5.ppc64le", product: { name: "cassandra-3.11.10-5.3.5.ppc64le", product_id: "cassandra-3.11.10-5.3.5.ppc64le", }, }, { category: "product_version", name: "cassandra-javadoc-3.11.10-5.3.5.ppc64le", product: { name: "cassandra-javadoc-3.11.10-5.3.5.ppc64le", product_id: "cassandra-javadoc-3.11.10-5.3.5.ppc64le", }, }, { category: "product_version", name: "cassandra-tools-3.11.10-5.3.5.ppc64le", product: { name: "cassandra-tools-3.11.10-5.3.5.ppc64le", product_id: "cassandra-tools-3.11.10-5.3.5.ppc64le", }, }, { category: "product_version", name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", product: { name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", product_id: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", product: { name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", product_id: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", }, }, { category: "product_version", name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", product: { name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", product_id: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le", }, }, { category: "product_version", name: "grafana-6.7.4-4.18.2.ppc64le", product: { name: "grafana-6.7.4-4.18.2.ppc64le", product_id: "grafana-6.7.4-4.18.2.ppc64le", }, }, { category: "product_version", name: "kibana-4.6.6-3.9.2.ppc64le", product: { name: "kibana-4.6.6-3.9.2.ppc64le", product_id: "kibana-4.6.6-3.9.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.ppc64le", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.ppc64le", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.ppc64le", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.ppc64le", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.s390x", product: { name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.s390x", product_id: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.s390x", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.s390x", product: { name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.s390x", product_id: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.s390x", }, }, { category: "product_version", name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.s390x", product: { name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.s390x", product_id: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.s390x", }, }, { category: "product_version", name: "grafana-6.7.4-4.18.2.s390x", product: { name: "grafana-6.7.4-4.18.2.s390x", product_id: "grafana-6.7.4-4.18.2.s390x", }, }, { category: "product_version", name: "kibana-4.6.6-3.9.2.s390x", product: { name: "kibana-4.6.6-3.9.2.s390x", product_id: "kibana-4.6.6-3.9.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.s390x", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.s390x", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.s390x", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.s390x", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "cassandra-3.11.10-5.3.5.x86_64", product: { name: "cassandra-3.11.10-5.3.5.x86_64", product_id: "cassandra-3.11.10-5.3.5.x86_64", }, }, { category: "product_version", name: "cassandra-tools-3.11.10-5.3.5.x86_64", product: { name: "cassandra-tools-3.11.10-5.3.5.x86_64", product_id: "cassandra-tools-3.11.10-5.3.5.x86_64", }, }, { category: "product_version", name: "grafana-6.7.4-4.18.2.x86_64", product: { name: "grafana-6.7.4-4.18.2.x86_64", product_id: "grafana-6.7.4-4.18.2.x86_64", }, }, { category: "product_version", name: "kibana-4.6.6-3.9.2.x86_64", product: { name: "kibana-4.6.6-3.9.2.x86_64", product_id: "kibana-4.6.6-3.9.2.x86_64", }, }, { category: "product_version", name: "cassandra-javadoc-3.11.10-5.3.5.x86_64", product: { name: "cassandra-javadoc-3.11.10-5.3.5.x86_64", product_id: "cassandra-javadoc-3.11.10-5.3.5.x86_64", }, }, { category: "product_version", name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", product: { name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", product_id: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", product: { name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", product_id: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", }, }, { category: "product_version", name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", product: { name: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", product_id: "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.x86_64", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.x86_64", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "HPE Helion OpenStack 8", product: { name: "HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8", product_identification_helper: { cpe: "cpe:/o:suse:hpe-helion-openstack:8", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud 8", product: { name: "SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:8", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud Crowbar 8", product: { name: "SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud-crowbar:8", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", }, product_reference: "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "cassandra-3.11.10-5.3.5.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", }, product_reference: "cassandra-3.11.10-5.3.5.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "cassandra-tools-3.11.10-5.3.5.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", }, product_reference: "cassandra-tools-3.11.10-5.3.5.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", }, product_reference: "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", }, product_reference: "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", }, product_reference: "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", }, product_reference: "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", }, product_reference: "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", }, product_reference: "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-4.18.2.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", }, product_reference: "grafana-6.7.4-4.18.2.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.6-3.9.2.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", }, product_reference: "kibana-4.6.6-3.9.2.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", }, product_reference: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", }, product_reference: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "python-Django-1.11.29-3.25.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", }, product_reference: "python-Django-1.11.29-3.25.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "python-elementpath-1.3.1-1.3.2.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", }, product_reference: "python-elementpath-1.3.1-1.3.2.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "python-eventlet-0.20.0-6.3.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", }, product_reference: "python-eventlet-0.20.0-6.3.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "python-nova-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", }, product_reference: "python-nova-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "python-py-1.4.34-3.3.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", }, product_reference: "python-py-1.4.34-3.3.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "python-pysaml2-4.0.2-5.9.2.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", }, product_reference: "python-pysaml2-4.0.2-5.9.2.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "python-xmlschema-1.0.18-1.3.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", }, product_reference: "python-xmlschema-1.0.18-1.3.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", }, product_reference: "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", }, product_reference: "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", }, product_reference: "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", }, product_reference: "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", }, product_reference: "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", }, product_reference: "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", }, product_reference: "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", }, product_reference: "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", }, product_reference: "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", }, product_reference: "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", }, product_reference: "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", }, product_reference: "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", }, product_reference: "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", }, product_reference: "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", }, product_reference: "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", }, product_reference: "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", }, product_reference: "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", }, product_reference: "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", }, product_reference: "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", }, product_reference: "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", }, product_reference: "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", }, product_reference: "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", }, product_reference: "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "cassandra-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", }, product_reference: "cassandra-3.11.10-5.3.5.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "cassandra-tools-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", }, product_reference: "cassandra-tools-3.11.10-5.3.5.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-4.18.2.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", }, product_reference: "grafana-6.7.4-4.18.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.6-3.9.2.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", }, product_reference: "kibana-4.6.6-3.9.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", }, product_reference: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", }, product_reference: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "python-Django-1.11.29-3.25.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", }, product_reference: "python-Django-1.11.29-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", }, product_reference: "python-elementpath-1.3.1-1.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "python-eventlet-0.20.0-6.3.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", }, product_reference: "python-eventlet-0.20.0-6.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "python-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", }, product_reference: "python-nova-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "python-py-1.4.34-3.3.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", }, product_reference: "python-py-1.4.34-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "python-pysaml2-4.0.2-5.9.2.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", }, product_reference: "python-pysaml2-4.0.2-5.9.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "python-xmlschema-1.0.18-1.3.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", }, product_reference: "python-xmlschema-1.0.18-1.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", }, product_reference: "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", }, product_reference: "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", }, product_reference: "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", }, product_reference: "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", }, product_reference: "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", }, product_reference: "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", }, product_reference: "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", }, product_reference: "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", }, product_reference: "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", }, product_reference: "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", }, product_reference: "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", }, product_reference: "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", }, product_reference: "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", }, product_reference: "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", }, product_reference: "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", }, product_reference: "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", }, product_reference: "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", }, product_reference: "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", }, product_reference: "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", }, product_reference: "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", }, product_reference: "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", }, product_reference: "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "cassandra-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", }, product_reference: "cassandra-3.11.10-5.3.5.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "cassandra-tools-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", }, product_reference: "cassandra-tools-3.11.10-5.3.5.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", }, product_reference: "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", }, product_reference: "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", }, product_reference: "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", }, product_reference: "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-4.18.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", }, product_reference: "grafana-6.7.4-4.18.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.6-3.9.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", }, product_reference: "kibana-4.6.6-3.9.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", }, product_reference: "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", }, product_reference: "openstack-monasca-installer-20190923_16.32-3.18.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-api-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-console-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", }, product_reference: "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "python-Django-1.11.29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", }, product_reference: "python-Django-1.11.29-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", }, product_reference: "python-elementpath-1.3.1-1.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "python-eventlet-0.20.0-6.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", }, product_reference: "python-eventlet-0.20.0-6.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "python-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", }, product_reference: "python-nova-16.1.9~dev92-3.48.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "python-py-1.4.34-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", }, product_reference: "python-py-1.4.34-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "python-pysaml2-4.0.2-5.9.2.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", }, product_reference: "python-pysaml2-4.0.2-5.9.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "python-xmlschema-1.0.18-1.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", }, product_reference: "python-xmlschema-1.0.18-1.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", }, product_reference: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, ], }, vulnerabilities: [ { cve: "CVE-2017-11481", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-11481", }, ], notes: [ { category: "general", text: "Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-11481", url: "https://www.suse.com/security/cve/CVE-2017-11481", }, { category: "external", summary: "SUSE Bug 1044849 for CVE-2017-11481", url: "https://bugzilla.suse.com/1044849", }, { category: "external", summary: "SUSE Bug 1072315 for CVE-2017-11481", url: "https://bugzilla.suse.com/1072315", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2017-11481", }, { cve: "CVE-2017-11499", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-11499", }, ], notes: [ { category: "general", text: "Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building with V8 snapshots enabled by default which caused the initially randomized seed to be overwritten on startup.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-11499", url: "https://www.suse.com/security/cve/CVE-2017-11499", }, { category: "external", summary: "SUSE Bug 1044849 for CVE-2017-11499", url: "https://bugzilla.suse.com/1044849", }, { category: "external", summary: "SUSE Bug 1048299 for CVE-2017-11499", url: "https://bugzilla.suse.com/1048299", }, { category: "external", summary: "SUSE Bug 1051117 for CVE-2017-11499", url: "https://bugzilla.suse.com/1051117", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "important", }, ], title: "CVE-2017-11499", }, { cve: "CVE-2017-5929", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-5929", }, ], notes: [ { category: "general", text: "QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-5929", url: "https://www.suse.com/security/cve/CVE-2017-5929", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2017-5929", }, { cve: "CVE-2019-25025", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-25025", }, ], notes: [ { category: "general", text: "The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepancies to achieve a correct guess in a relatively short amount of time. This is a related issue to CVE-2019-16782.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-25025", url: "https://www.suse.com/security/cve/CVE-2019-25025", }, { category: "external", summary: "SUSE Bug 1159548 for CVE-2019-25025", url: "https://bugzilla.suse.com/1159548", }, { category: "external", summary: "SUSE Bug 1183174 for CVE-2019-25025", url: "https://bugzilla.suse.com/1183174", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2019-25025", }, { cve: "CVE-2020-17516", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-17516", }, ], notes: [ { category: "general", text: "Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc' or 'rack' internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted connection despite not being in the same rack or dc, and bypass mutual TLS requirement.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-17516", url: "https://www.suse.com/security/cve/CVE-2020-17516", }, { category: "external", summary: "SUSE Bug 1181689 for CVE-2020-17516", url: "https://bugzilla.suse.com/1181689", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2020-17516", }, { cve: "CVE-2020-26247", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-26247", }, ], notes: [ { category: "general", text: "Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers with XPath and CSS selector support. In Nokogiri before version 1.11.0.rc4 there is an XXE vulnerability. XML Schemas parsed by Nokogiri::XML::Schema are trusted by default, allowing external resources to be accessed over the network, potentially enabling XXE or SSRF attacks. This behavior is counter to the security policy followed by Nokogiri maintainers, which is to treat all input as untrusted by default whenever possible. This is fixed in Nokogiri version 1.11.0.rc4.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-26247", url: "https://www.suse.com/security/cve/CVE-2020-26247", }, { category: "external", summary: "SUSE Bug 1180507 for CVE-2020-26247", url: "https://bugzilla.suse.com/1180507", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2020-26247", }, { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2020-29651", }, { cve: "CVE-2021-21238", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-21238", }, ], notes: [ { category: "general", text: "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping because it did not validate the SAML document against an XML schema. This allowed invalid XML documents to be processed and such a document can trick pysaml2 with a wrapped signature. This is fixed in PySAML2 6.5.0.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-21238", url: "https://www.suse.com/security/cve/CVE-2021-21238", }, { category: "external", summary: "SUSE Bug 1181277 for CVE-2021-21238", url: "https://bugzilla.suse.com/1181277", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2021-21238", }, { cve: "CVE-2021-21239", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-21239", }, ], notes: [ { category: "general", text: "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-21239", url: "https://www.suse.com/security/cve/CVE-2021-21239", }, { category: "external", summary: "SUSE Bug 1181278 for CVE-2021-21239", url: "https://bugzilla.suse.com/1181278", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2021-21239", }, { cve: "CVE-2021-21419", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-21419", }, ], notes: [ { category: "general", text: "Eventlet is a concurrent networking library for Python. A websocket peer may exhaust memory on Eventlet side by sending very large websocket frames. Malicious peer may exhaust memory on Eventlet side by sending highly compressed data frame. A patch in version 0.31.0 restricts websocket frame to reasonable limits. As a workaround, restricting memory usage via OS limits would help against overall machine exhaustion, but there is no workaround to protect Eventlet process.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-21419", url: "https://www.suse.com/security/cve/CVE-2021-21419", }, { category: "external", summary: "SUSE Bug 1185836 for CVE-2021-21419", url: "https://bugzilla.suse.com/1185836", }, { category: "external", summary: "SUSE Bug 1216802 for CVE-2021-21419", url: "https://bugzilla.suse.com/1216802", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "important", }, ], title: "CVE-2021-21419", }, { cve: "CVE-2021-23336", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-23336", }, ], notes: [ { category: "general", text: "The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-23336", url: "https://www.suse.com/security/cve/CVE-2021-23336", }, { category: "external", summary: "SUSE Bug 1182179 for CVE-2021-23336", url: "https://bugzilla.suse.com/1182179", }, { category: "external", summary: "SUSE Bug 1182379 for CVE-2021-23336", url: "https://bugzilla.suse.com/1182379", }, { category: "external", summary: "SUSE Bug 1182433 for CVE-2021-23336", url: "https://bugzilla.suse.com/1182433", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2021-23336", }, { cve: "CVE-2021-27358", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27358", }, ], notes: [ { category: "general", text: "The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27358", url: "https://www.suse.com/security/cve/CVE-2021-27358", }, { category: "external", summary: "SUSE Bug 1183803 for CVE-2021-27358", url: "https://bugzilla.suse.com/1183803", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "important", }, ], title: "CVE-2021-27358", }, { cve: "CVE-2021-28658", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-28658", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-28658", url: "https://www.suse.com/security/cve/CVE-2021-28658", }, { category: "external", summary: "SUSE Bug 1184148 for CVE-2021-28658", url: "https://bugzilla.suse.com/1184148", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "low", }, ], title: "CVE-2021-28658", }, { cve: "CVE-2021-31542", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-31542", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-31542", url: "https://www.suse.com/security/cve/CVE-2021-31542", }, { category: "external", summary: "SUSE Bug 1185623 for CVE-2021-31542", url: "https://bugzilla.suse.com/1185623", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2021-31542", }, { cve: "CVE-2021-33203", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33203", }, ], notes: [ { category: "general", text: "Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs templates have been customized by application developers to also show file contents, then not only the existence but also the file contents would have been exposed. In other words, there is directory traversal outside of the template root directories.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33203", url: "https://www.suse.com/security/cve/CVE-2021-33203", }, { category: "external", summary: "SUSE Bug 1186608 for CVE-2021-33203", url: "https://bugzilla.suse.com/1186608", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "moderate", }, ], title: "CVE-2021-33203", }, { cve: "CVE-2021-33571", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33571", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4_address and validate_ipv46_address are unaffected with Python 3.9.5+..) .", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33571", url: "https://www.suse.com/security/cve/CVE-2021-33571", }, { category: "external", summary: "SUSE Bug 1186611 for CVE-2021-33571", url: "https://bugzilla.suse.com/1186611", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch", "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64", "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64", "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch", "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch", "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch", "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch", "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch", "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch", "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch", "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch", "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch", "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch", "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch", "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch", "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64", "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch", "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch", "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch", "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch", "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-07-28T15:27:22Z", details: "important", }, ], title: "CVE-2021-33571", }, ], }
suse-su-2021:1963-1
Vulnerability from csaf_suse
Published
2021-06-11 13:14
Modified
2021-06-11 13:14
Summary
Security update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store
Notes
Title of the patch
Security update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store
Description of the patch
This update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store contains the following fixes:
Security fixes included in this update:
crowbar-openstack:
- CVE-2016-8611: Added rate limiting for the '/images' API POST method
(bsc#1005886).
grafana:
- CVE-2021-27358: Fixed a denial of service via remote API call
(bsc#1183803)
kibana:
- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the
HashTable implementation, which could cause a denial of service
(bsc#1044849)
- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL
fields (bsc#1044849)
python-Django:
- CVE-2021-3281: Fixed a directory traversal via archive.extract()
(bsc#1181379)
- CVE-2021-28658: Fixed a directory traversal via uploaded files
(bsc#1184148)
- CVE-2021-31542: Fixed a directory traversal via uploaded files with
suitably crafted file names (bsc#1185623)
- CVE-2021-33203:Fixed potential path-traversal via admindocs'
TemplateDetailView (bsc#1186608)
- CVE-2021-33571: Tighten validator checks to not allow leading zeros in
IPv4 addresses, which potentially leads to further attacks (bsc#1186611)
python-py:
- CVE-2020-29651: Fixed a denial of service via regular expressions
(bsc#1179805)
rubygem-activerecord-session_store:
- CVE-2019-25025: Fixed a timing attacks targeting the session id which
could allow an attack to hijack sessions (bsc#1183174)
Non-security fixes included in this update:
Changes in crowbar-openstack:
- Update to version 4.0+git.1616146720.44daffca0:
* monasca: restart Kibana on update (bsc#1044849)
Changes in grafana_Update:
- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)
* Prevent unauthenticated remote attackers from causing a DoS through the
snapshots API.
Changes in kibana_Update:
- Ensure /etc/sysconfig/kibana is present
- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14,
ESA-2017-16)
* [4.6] ignore forked code for babel transpile build phase (#13483)
* Allow more than match queries in custom filters (#8614) (#10857)
* [state] don't make extra $location.replace() calls (#9954)
* [optimizer] move to querystring-browser package for up-to-date api
* [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls
* server: refactor log_interceptor to be more DRY (#9617)
* server: downgrade ECANCELED logs to debug (#9616)
* server: do not treat logged warnings as errors (#8746) (#9610)
* [server/logger] downgrade EPIPE errors to debug level (#9023)
* Add basepath when redirecting from a trailling slash (#9035)
* [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)
* [server/shortUrl] validate urls before shortening them
- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)
* This fixes an XSS vulnerability in URL fields
- Remove %dir declaration from /opt/kibana/optimize to ensure
no files owned by root end up in there
- Exclude /opt/kibana/optimize from %fdupes
- Restart service on upgrade
- Do not copy LICENSE.txt and README.txt to /opt/kibana
- Fix rpmlint warnings/errors
- Switch to explicit patch application
- Fix source URL
- Fix logic for systemd/systemv detection
Changes in monasca-installer_Update:
- Add support-influxdb-1.2.patch (SOC-11435)
Changes in python-Django_Update:
- Fixed potential path-traversal via admindocs' TemplateDetailView.(bsc#1186608, CVE-2021-33203)
- Prevented leading zeros in IPv4 addresses. (bsc#1186611, CVE-2021-33571)
- Add delegate-os-path-filename-generation-to-storage.patch (bsc#1185623)
* Needed for CVE-2021-31542.patch to apply
- Tightened path & file name sanitation in file uploads. (bsc#1185623, CVE-2021-31542)
- Fixed potential directory-traversal via uploaded files. (bsc#1184148, CVE-2021-28658)
- Fixes a potential directory traversal when extracting archives. (bsc#1181379, CVE-2021-3281)
Changes in python-py_Update:
- Add CVE-2020-29651.patch (CVE-2020-29651, bsc#1179805)
* svnwc: fix regular expression vulnerable to DoS in blame functionality
- Ensure /usr/share/licenses exists
Changes in rubygem-activerecord-session_store_Update:
- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)
* This requires CVE-2019-16782.patch to be included in
rubygem-actionpack-4_2 to work correctly.
Patchnames
SUSE-2021-1963,SUSE-OpenStack-Cloud-7-2021-1963
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store", title: "Title of the patch", }, { category: "description", text: "This update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store contains the following fixes:\n\nSecurity fixes included in this update:\n\n\ncrowbar-openstack:\n- CVE-2016-8611: Added rate limiting for the '/images' API POST method\n(bsc#1005886).\n\ngrafana:\n- CVE-2021-27358: Fixed a denial of service via remote API call\n(bsc#1183803)\n\nkibana:\n- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the\nHashTable implementation, which could cause a denial of service\n(bsc#1044849)\n- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL\nfields (bsc#1044849)\n\npython-Django:\n- CVE-2021-3281: Fixed a directory traversal via archive.extract()\n(bsc#1181379)\n- CVE-2021-28658: Fixed a directory traversal via uploaded files\n(bsc#1184148)\n- CVE-2021-31542: Fixed a directory traversal via uploaded files with\nsuitably crafted file names (bsc#1185623)\n- CVE-2021-33203:Fixed potential path-traversal via admindocs'\nTemplateDetailView (bsc#1186608)\n- CVE-2021-33571: Tighten validator checks to not allow leading zeros in\nIPv4 addresses, which potentially leads to further attacks (bsc#1186611)\n\npython-py:\n- CVE-2020-29651: Fixed a denial of service via regular expressions\n(bsc#1179805)\n\nrubygem-activerecord-session_store:\n- CVE-2019-25025: Fixed a timing attacks targeting the session id which\ncould allow an attack to hijack sessions (bsc#1183174)\n\n\nNon-security fixes included in this update:\n\nChanges in crowbar-openstack:\n- Update to version 4.0+git.1616146720.44daffca0:\n * monasca: restart Kibana on update (bsc#1044849)\n\nChanges in grafana_Update:\n- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)\n * Prevent unauthenticated remote attackers from causing a DoS through the\n snapshots API.\n\nChanges in kibana_Update:\n- Ensure /etc/sysconfig/kibana is present\n\n- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14,\n ESA-2017-16)\n * [4.6] ignore forked code for babel transpile build phase (#13483)\n * Allow more than match queries in custom filters (#8614) (#10857)\n * [state] don't make extra $location.replace() calls (#9954)\n * [optimizer] move to querystring-browser package for up-to-date api\n * [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls\n * server: refactor log_interceptor to be more DRY (#9617)\n * server: downgrade ECANCELED logs to debug (#9616)\n * server: do not treat logged warnings as errors (#8746) (#9610)\n * [server/logger] downgrade EPIPE errors to debug level (#9023)\n * Add basepath when redirecting from a trailling slash (#9035)\n * [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)\n * [server/shortUrl] validate urls before shortening them\n- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)\n * This fixes an XSS vulnerability in URL fields\n- Remove %dir declaration from /opt/kibana/optimize to ensure\n no files owned by root end up in there\n- Exclude /opt/kibana/optimize from %fdupes\n- Restart service on upgrade\n- Do not copy LICENSE.txt and README.txt to /opt/kibana\n- Fix rpmlint warnings/errors\n- Switch to explicit patch application\n- Fix source URL\n- Fix logic for systemd/systemv detection\n\nChanges in monasca-installer_Update:\n- Add support-influxdb-1.2.patch (SOC-11435)\n\nChanges in python-Django_Update:\n- Fixed potential path-traversal via admindocs' TemplateDetailView.(bsc#1186608, CVE-2021-33203)\n- Prevented leading zeros in IPv4 addresses. (bsc#1186611, CVE-2021-33571)\n- Add delegate-os-path-filename-generation-to-storage.patch (bsc#1185623)\n * Needed for CVE-2021-31542.patch to apply\n- Tightened path & file name sanitation in file uploads. (bsc#1185623, CVE-2021-31542)\n- Fixed potential directory-traversal via uploaded files. (bsc#1184148, CVE-2021-28658)\n- Fixes a potential directory traversal when extracting archives. (bsc#1181379, CVE-2021-3281)\n\nChanges in python-py_Update:\n- Add CVE-2020-29651.patch (CVE-2020-29651, bsc#1179805)\n * svnwc: fix regular expression vulnerable to DoS in blame functionality\n- Ensure /usr/share/licenses exists\n\nChanges in rubygem-activerecord-session_store_Update:\n- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)\n * This requires CVE-2019-16782.patch to be included in\n rubygem-actionpack-4_2 to work correctly.\n\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2021-1963,SUSE-OpenStack-Cloud-7-2021-1963", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1963-1.json", }, { category: "self", summary: "URL for SUSE-SU-2021:1963-1", url: "https://www.suse.com/support/update/announcement/2021/suse-su-20211963-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2021:1963-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2021-June/008999.html", }, { category: "self", summary: "SUSE Bug 1044849", url: "https://bugzilla.suse.com/1044849", }, { category: "self", summary: "SUSE Bug 1179805", url: "https://bugzilla.suse.com/1179805", }, { category: "self", summary: "SUSE Bug 1181379", url: "https://bugzilla.suse.com/1181379", }, { category: "self", summary: "SUSE Bug 1183803", url: "https://bugzilla.suse.com/1183803", }, { category: "self", summary: "SUSE Bug 1184148", url: "https://bugzilla.suse.com/1184148", }, { category: "self", summary: "SUSE Bug 1185623", url: "https://bugzilla.suse.com/1185623", }, { category: "self", summary: "SUSE Bug 1186608", url: "https://bugzilla.suse.com/1186608", }, { category: "self", summary: "SUSE Bug 1186611", url: "https://bugzilla.suse.com/1186611", }, { category: "self", summary: "SUSE CVE CVE-2017-11481 page", url: "https://www.suse.com/security/cve/CVE-2017-11481/", }, { category: "self", summary: "SUSE CVE CVE-2017-11499 page", url: "https://www.suse.com/security/cve/CVE-2017-11499/", }, { category: "self", summary: "SUSE CVE CVE-2019-25025 page", url: "https://www.suse.com/security/cve/CVE-2019-25025/", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, { category: "self", summary: "SUSE CVE CVE-2021-27358 page", url: "https://www.suse.com/security/cve/CVE-2021-27358/", }, { category: "self", summary: "SUSE CVE CVE-2021-28658 page", url: "https://www.suse.com/security/cve/CVE-2021-28658/", }, { category: "self", summary: "SUSE CVE CVE-2021-31542 page", url: "https://www.suse.com/security/cve/CVE-2021-31542/", }, { category: "self", summary: "SUSE CVE CVE-2021-3281 page", url: "https://www.suse.com/security/cve/CVE-2021-3281/", }, { category: "self", summary: "SUSE CVE CVE-2021-33203 page", url: "https://www.suse.com/security/cve/CVE-2021-33203/", }, { category: "self", summary: "SUSE CVE CVE-2021-33571 page", url: "https://www.suse.com/security/cve/CVE-2021-33571/", }, ], title: "Security update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store", tracking: { current_release_date: "2021-06-11T13:14:14Z", generator: { date: "2021-06-11T13:14:14Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2021:1963-1", initial_release_date: "2021-06-11T13:14:14Z", revision_history: [ { date: "2021-06-11T13:14:14Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "grafana-6.7.4-1.24.2.aarch64", product: { name: "grafana-6.7.4-1.24.2.aarch64", product_id: "grafana-6.7.4-1.24.2.aarch64", }, }, { category: "product_version", name: "kibana-4.6.6-9.2.aarch64", product: { name: "kibana-4.6.6-9.2.aarch64", product_id: "kibana-4.6.6-9.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.aarch64", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.aarch64", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", product: { name: "crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", product_id: "crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", }, }, { category: "product_version", name: "monasca-installer-20180608_12.47-16.2.noarch", product: { name: "monasca-installer-20180608_12.47-16.2.noarch", product_id: "monasca-installer-20180608_12.47-16.2.noarch", }, }, { category: "product_version", name: "python-Django-1.8.19-3.29.1.noarch", product: { name: "python-Django-1.8.19-3.29.1.noarch", product_id: "python-Django-1.8.19-3.29.1.noarch", }, }, { category: "product_version", name: "python-py-1.8.1-11.16.2.noarch", product: { name: "python-py-1.8.1-11.16.2.noarch", product_id: "python-py-1.8.1-11.16.2.noarch", }, }, { category: "product_version", name: "python3-py-1.8.1-11.16.2.noarch", product: { name: "python3-py-1.8.1-11.16.2.noarch", product_id: "python3-py-1.8.1-11.16.2.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "grafana-6.7.4-1.24.2.ppc64le", product: { name: "grafana-6.7.4-1.24.2.ppc64le", product_id: "grafana-6.7.4-1.24.2.ppc64le", }, }, { category: "product_version", name: "kibana-4.6.6-9.2.ppc64le", product: { name: "kibana-4.6.6-9.2.ppc64le", product_id: "kibana-4.6.6-9.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.ppc64le", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.ppc64le", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.ppc64le", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.ppc64le", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "grafana-6.7.4-1.24.2.s390x", product: { name: "grafana-6.7.4-1.24.2.s390x", product_id: "grafana-6.7.4-1.24.2.s390x", }, }, { category: "product_version", name: "kibana-4.6.6-9.2.s390x", product: { name: "kibana-4.6.6-9.2.s390x", product_id: "kibana-4.6.6-9.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.s390x", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.s390x", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "grafana-6.7.4-1.24.2.x86_64", product: { name: "grafana-6.7.4-1.24.2.x86_64", product_id: "grafana-6.7.4-1.24.2.x86_64", }, }, { category: "product_version", name: "kibana-4.6.6-9.2.x86_64", product: { name: "kibana-4.6.6-9.2.x86_64", product_id: "kibana-4.6.6-9.2.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.x86_64", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.x86_64", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.4.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 7", product: { name: "SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:7", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", }, product_reference: "crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-1.24.2.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", }, product_reference: "grafana-6.7.4-1.24.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.6-9.2.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", }, product_reference: "kibana-4.6.6-9.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "monasca-installer-20180608_12.47-16.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", }, product_reference: "monasca-installer-20180608_12.47-16.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-Django-1.8.19-3.29.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", }, product_reference: "python-Django-1.8.19-3.29.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-py-1.8.1-11.16.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", }, product_reference: "python-py-1.8.1-11.16.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", }, product_reference: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", }, product_reference: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", }, product_reference: "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, ], }, vulnerabilities: [ { cve: "CVE-2017-11481", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-11481", }, ], notes: [ { category: "general", text: "Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-11481", url: "https://www.suse.com/security/cve/CVE-2017-11481", }, { category: "external", summary: "SUSE Bug 1044849 for CVE-2017-11481", url: "https://bugzilla.suse.com/1044849", }, { category: "external", summary: "SUSE Bug 1072315 for CVE-2017-11481", url: "https://bugzilla.suse.com/1072315", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "moderate", }, ], title: "CVE-2017-11481", }, { cve: "CVE-2017-11499", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-11499", }, ], notes: [ { category: "general", text: "Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building with V8 snapshots enabled by default which caused the initially randomized seed to be overwritten on startup.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-11499", url: "https://www.suse.com/security/cve/CVE-2017-11499", }, { category: "external", summary: "SUSE Bug 1044849 for CVE-2017-11499", url: "https://bugzilla.suse.com/1044849", }, { category: "external", summary: "SUSE Bug 1048299 for CVE-2017-11499", url: "https://bugzilla.suse.com/1048299", }, { category: "external", summary: "SUSE Bug 1051117 for CVE-2017-11499", url: "https://bugzilla.suse.com/1051117", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "important", }, ], title: "CVE-2017-11499", }, { cve: "CVE-2019-25025", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-25025", }, ], notes: [ { category: "general", text: "The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepancies to achieve a correct guess in a relatively short amount of time. This is a related issue to CVE-2019-16782.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-25025", url: "https://www.suse.com/security/cve/CVE-2019-25025", }, { category: "external", summary: "SUSE Bug 1159548 for CVE-2019-25025", url: "https://bugzilla.suse.com/1159548", }, { category: "external", summary: "SUSE Bug 1183174 for CVE-2019-25025", url: "https://bugzilla.suse.com/1183174", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "moderate", }, ], title: "CVE-2019-25025", }, { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "moderate", }, ], title: "CVE-2020-29651", }, { cve: "CVE-2021-27358", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27358", }, ], notes: [ { category: "general", text: "The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27358", url: "https://www.suse.com/security/cve/CVE-2021-27358", }, { category: "external", summary: "SUSE Bug 1183803 for CVE-2021-27358", url: "https://bugzilla.suse.com/1183803", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "important", }, ], title: "CVE-2021-27358", }, { cve: "CVE-2021-28658", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-28658", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-28658", url: "https://www.suse.com/security/cve/CVE-2021-28658", }, { category: "external", summary: "SUSE Bug 1184148 for CVE-2021-28658", url: "https://bugzilla.suse.com/1184148", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "low", }, ], title: "CVE-2021-28658", }, { cve: "CVE-2021-31542", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-31542", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-31542", url: "https://www.suse.com/security/cve/CVE-2021-31542", }, { category: "external", summary: "SUSE Bug 1185623 for CVE-2021-31542", url: "https://bugzilla.suse.com/1185623", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "moderate", }, ], title: "CVE-2021-31542", }, { cve: "CVE-2021-3281", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-3281", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.18, 3.0 before 3.0.12, and 3.1 before 3.1.6, the django.utils.archive.extract method (used by \"startapp --template\" and \"startproject --template\") allows directory traversal via an archive with absolute paths or relative paths with dot segments.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-3281", url: "https://www.suse.com/security/cve/CVE-2021-3281", }, { category: "external", summary: "SUSE Bug 1181379 for CVE-2021-3281", url: "https://bugzilla.suse.com/1181379", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.8, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "moderate", }, ], title: "CVE-2021-3281", }, { cve: "CVE-2021-33203", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33203", }, ], notes: [ { category: "general", text: "Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs templates have been customized by application developers to also show file contents, then not only the existence but also the file contents would have been exposed. In other words, there is directory traversal outside of the template root directories.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33203", url: "https://www.suse.com/security/cve/CVE-2021-33203", }, { category: "external", summary: "SUSE Bug 1186608 for CVE-2021-33203", url: "https://bugzilla.suse.com/1186608", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "moderate", }, ], title: "CVE-2021-33203", }, { cve: "CVE-2021-33571", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33571", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4_address and validate_ipv46_address are unaffected with Python 3.9.5+..) .", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33571", url: "https://www.suse.com/security/cve/CVE-2021-33571", }, { category: "external", summary: "SUSE Bug 1186611 for CVE-2021-33571", url: "https://bugzilla.suse.com/1186611", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.24.2.x86_64", "SUSE OpenStack Cloud 7:kibana-4.6.6-9.2.x86_64", "SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-16.2.noarch", "SUSE OpenStack Cloud 7:python-Django-1.8.19-3.29.1.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.16.2.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:14:14Z", details: "important", }, ], title: "CVE-2021-33571", }, ], }
suse-su-2022:2831-1
Vulnerability from csaf_suse
Published
2022-08-17 12:42
Modified
2022-08-17 12:42
Summary
Recommended update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures, python-coverage, python-oniconfig, python-unittest-mixins
Notes
Title of the patch
Recommended update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures, python-coverage, python-oniconfig, python-unittest-mixins
Description of the patch
This update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures fixes the following issues:
- Update in SLE-15 (bsc#1196696, bsc#1195916, jsc#SLE-23972)
- Remove redundant python3 dependency from Requires
- Update regular expression to fix python shebang
- Style is enforced upstream and triggers unnecessary build version requirements
- Allow specifying fs_id in cloudwatch log group name
- Includes fix for stunnel path
- Added hardening to systemd service(s).
- Raise minimal pytest version
- Fix typo in the ansi2html Requires
- Cleanup with spec-cleaner
- Make sure the tests are really executed
- Remove useless devel dependency
- Multiprocessing support in Python 3.8 was broken, but is now fixed
- Bumpy the URL to point to github rather than to docs
Patchnames
SUSE-2022-2831,SUSE-SLE-Module-Basesystem-15-SP3-2022-2831,SUSE-SLE-Module-Basesystem-15-SP4-2022-2831,SUSE-SLE-Module-Development-Tools-15-SP3-2022-2831,SUSE-SLE-Module-Development-Tools-15-SP4-2022-2831,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-2831,SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP1-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP2-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP3-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP4-2022-2831,SUSE-SLE-Module-Python2-15-SP3-2022-2831,SUSE-SUSE-MicroOS-5.1-2022-2831,SUSE-SUSE-MicroOS-5.2-2022-2831,openSUSE-SLE-15.3-2022-2831,openSUSE-SLE-15.4-2022-2831
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Recommended update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures, python-coverage, python-oniconfig, python-unittest-mixins", title: "Title of the patch", }, { category: "description", text: "This update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures fixes the following issues:\n\n- Update in SLE-15 (bsc#1196696, bsc#1195916, jsc#SLE-23972)\n\n- Remove redundant python3 dependency from Requires\n- Update regular expression to fix python shebang\n- Style is enforced upstream and triggers unnecessary build version requirements\n- Allow specifying fs_id in cloudwatch log group name\n- Includes fix for stunnel path\n- Added hardening to systemd service(s). \n- Raise minimal pytest version\n- Fix typo in the ansi2html Requires\n- Cleanup with spec-cleaner\n- Make sure the tests are really executed\n- Remove useless devel dependency\n- Multiprocessing support in Python 3.8 was broken, but is now fixed\n- Bumpy the URL to point to github rather than to docs\n\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-2831,SUSE-SLE-Module-Basesystem-15-SP3-2022-2831,SUSE-SLE-Module-Basesystem-15-SP4-2022-2831,SUSE-SLE-Module-Development-Tools-15-SP3-2022-2831,SUSE-SLE-Module-Development-Tools-15-SP4-2022-2831,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-2831,SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP1-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP2-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP3-2022-2831,SUSE-SLE-Module-Public-Cloud-15-SP4-2022-2831,SUSE-SLE-Module-Python2-15-SP3-2022-2831,SUSE-SUSE-MicroOS-5.1-2022-2831,SUSE-SUSE-MicroOS-5.2-2022-2831,openSUSE-SLE-15.3-2022-2831,openSUSE-SLE-15.4-2022-2831", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_2831-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:2831-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20222831-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:2831-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-August/011928.html", }, { category: "self", summary: "SUSE Bug 1195916", url: "https://bugzilla.suse.com/1195916", }, { category: "self", summary: "SUSE Bug 1196696", url: "https://bugzilla.suse.com/1196696", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "Recommended update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures, python-coverage, python-oniconfig, python-unittest-mixins", tracking: { current_release_date: "2022-08-17T12:42:07Z", generator: { date: "2022-08-17T12:42:07Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:2831-1", initial_release_date: "2022-08-17T12:42:07Z", revision_history: [ { date: "2022-08-17T12:42:07Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python2-coverage-4.5.4-150000.3.3.2.aarch64", product: { name: "python2-coverage-4.5.4-150000.3.3.2.aarch64", product_id: "python2-coverage-4.5.4-150000.3.3.2.aarch64", }, }, { category: "product_version", name: "python3-coverage-4.5.4-150000.3.3.2.aarch64", product: { name: "python3-coverage-4.5.4-150000.3.3.2.aarch64", product_id: "python3-coverage-4.5.4-150000.3.3.2.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python2-coverage-4.5.4-150000.3.3.2.i586", product: { name: "python2-coverage-4.5.4-150000.3.3.2.i586", product_id: "python2-coverage-4.5.4-150000.3.3.2.i586", }, }, { category: "product_version", name: "python3-coverage-4.5.4-150000.3.3.2.i586", product: { name: "python3-coverage-4.5.4-150000.3.3.2.i586", product_id: "python3-coverage-4.5.4-150000.3.3.2.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "aws-efs-utils-1.31.3-150000.4.3.1.noarch", product: { name: "aws-efs-utils-1.31.3-150000.4.3.1.noarch", product_id: "aws-efs-utils-1.31.3-150000.4.3.1.noarch", }, }, { category: "product_version", name: "python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", product: { name: "python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", product_id: "python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", }, }, { category: "product_version", name: "python2-ansi2html-1.5.2-150000.3.3.1.noarch", product: { name: "python2-ansi2html-1.5.2-150000.3.3.1.noarch", product_id: "python2-ansi2html-1.5.2-150000.3.3.1.noarch", }, }, { category: "product_version", name: "python2-apipkg-1.4-150000.3.2.1.noarch", product: { name: "python2-apipkg-1.4-150000.3.2.1.noarch", product_id: "python2-apipkg-1.4-150000.3.2.1.noarch", }, }, { category: "product_version", name: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch", product: { name: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch", product_id: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch", }, }, { category: "product_version", name: "python2-iniconfig-1.1.1-150000.1.3.1.noarch", product: { name: "python2-iniconfig-1.1.1-150000.1.3.1.noarch", product_id: "python2-iniconfig-1.1.1-150000.1.3.1.noarch", }, }, { category: "product_version", name: "python2-py-1.10.0-150000.5.9.2.noarch", product: { name: "python2-py-1.10.0-150000.5.9.2.noarch", product_id: "python2-py-1.10.0-150000.5.9.2.noarch", }, }, { category: "product_version", name: "python2-pycodestyle-2.5.0-150000.3.2.2.noarch", product: { name: "python2-pycodestyle-2.5.0-150000.3.2.2.noarch", product_id: "python2-pycodestyle-2.5.0-150000.3.2.2.noarch", }, }, { category: "product_version", name: "python2-pyflakes-2.1.1-150000.3.2.2.noarch", product: { name: "python2-pyflakes-2.1.1-150000.3.2.2.noarch", product_id: "python2-pyflakes-2.1.1-150000.3.2.2.noarch", }, }, { category: "product_version", name: "python2-pytest-metadata-1.10.0-150000.3.3.1.noarch", product: { name: "python2-pytest-metadata-1.10.0-150000.3.3.1.noarch", product_id: "python2-pytest-metadata-1.10.0-150000.3.3.1.noarch", }, }, { category: "product_version", name: "python2-unittest-mixins-1.6-150000.1.3.2.noarch", product: { name: "python2-unittest-mixins-1.6-150000.1.3.2.noarch", product_id: "python2-unittest-mixins-1.6-150000.1.3.2.noarch", }, }, { category: "product_version", name: "python3-ansi2html-1.5.2-150000.3.3.1.noarch", product: { name: "python3-ansi2html-1.5.2-150000.3.3.1.noarch", product_id: "python3-ansi2html-1.5.2-150000.3.3.1.noarch", }, }, { category: "product_version", name: "python3-apipkg-1.4-150000.3.2.1.noarch", product: { name: "python3-apipkg-1.4-150000.3.2.1.noarch", product_id: "python3-apipkg-1.4-150000.3.2.1.noarch", }, }, { category: "product_version", name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", product: { name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", product_id: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", }, }, { category: "product_version", name: "python3-iniconfig-1.1.1-150000.1.3.1.noarch", product: { name: "python3-iniconfig-1.1.1-150000.1.3.1.noarch", product_id: "python3-iniconfig-1.1.1-150000.1.3.1.noarch", }, }, { category: "product_version", name: "python3-py-1.10.0-150000.5.9.2.noarch", product: { name: "python3-py-1.10.0-150000.5.9.2.noarch", product_id: "python3-py-1.10.0-150000.5.9.2.noarch", }, }, { category: "product_version", name: "python3-pycodestyle-2.5.0-150000.3.2.2.noarch", product: { name: "python3-pycodestyle-2.5.0-150000.3.2.2.noarch", product_id: "python3-pycodestyle-2.5.0-150000.3.2.2.noarch", }, }, { category: "product_version", name: "python3-pyflakes-2.1.1-150000.3.2.2.noarch", product: { name: "python3-pyflakes-2.1.1-150000.3.2.2.noarch", product_id: "python3-pyflakes-2.1.1-150000.3.2.2.noarch", }, }, { category: "product_version", name: "python3-pytest-html-3.1.1-150000.3.3.1.noarch", product: { name: "python3-pytest-html-3.1.1-150000.3.3.1.noarch", product_id: "python3-pytest-html-3.1.1-150000.3.3.1.noarch", }, }, { category: "product_version", name: "python3-pytest-metadata-1.10.0-150000.3.3.1.noarch", product: { name: "python3-pytest-metadata-1.10.0-150000.3.3.1.noarch", product_id: "python3-pytest-metadata-1.10.0-150000.3.3.1.noarch", }, }, { category: "product_version", name: "python3-pytest-rerunfailures-9.1.1-150000.3.3.1.noarch", product: { name: "python3-pytest-rerunfailures-9.1.1-150000.3.3.1.noarch", product_id: "python3-pytest-rerunfailures-9.1.1-150000.3.3.1.noarch", }, }, { category: "product_version", name: "python3-unittest-mixins-1.6-150000.1.3.2.noarch", product: { name: "python3-unittest-mixins-1.6-150000.1.3.2.noarch", product_id: "python3-unittest-mixins-1.6-150000.1.3.2.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "python2-coverage-4.5.4-150000.3.3.2.ppc64le", product: { name: "python2-coverage-4.5.4-150000.3.3.2.ppc64le", product_id: "python2-coverage-4.5.4-150000.3.3.2.ppc64le", }, }, { category: "product_version", name: "python3-coverage-4.5.4-150000.3.3.2.ppc64le", product: { name: "python3-coverage-4.5.4-150000.3.3.2.ppc64le", product_id: "python3-coverage-4.5.4-150000.3.3.2.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python2-coverage-4.5.4-150000.3.3.2.s390x", product: { name: "python2-coverage-4.5.4-150000.3.3.2.s390x", product_id: "python2-coverage-4.5.4-150000.3.3.2.s390x", }, }, { category: "product_version", name: "python3-coverage-4.5.4-150000.3.3.2.s390x", product: { name: "python3-coverage-4.5.4-150000.3.3.2.s390x", product_id: "python3-coverage-4.5.4-150000.3.3.2.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python2-coverage-4.5.4-150000.3.3.2.x86_64", product: { name: "python2-coverage-4.5.4-150000.3.3.2.x86_64", product_id: "python2-coverage-4.5.4-150000.3.3.2.x86_64", }, }, { category: "product_version", name: "python3-coverage-4.5.4-150000.3.3.2.x86_64", product: { name: "python3-coverage-4.5.4-150000.3.3.2.x86_64", product_id: "python3-coverage-4.5.4-150000.3.3.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Basesystem 15 SP3", product: { name: "SUSE Linux Enterprise Module for Basesystem 15 SP3", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-basesystem:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Basesystem 15 SP4", product: { name: "SUSE Linux Enterprise Module for Basesystem 15 SP4", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-basesystem:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Development Tools 15 SP3", product: { name: "SUSE Linux Enterprise Module for Development Tools 15 SP3", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-development-tools:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Development Tools 15 SP4", product: { name: "SUSE Linux Enterprise Module for Development Tools 15 SP4", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-development-tools:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product: { name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:packagehub:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Package Hub 15 SP4", product: { name: "SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:packagehub:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Python 2 15 SP3", product: { name: "SUSE Linux Enterprise Module for Python 2 15 SP3", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-python2:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Micro 5.1", product: { name: "SUSE Linux Enterprise Micro 5.1", product_id: "SUSE Linux Enterprise Micro 5.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-microos:5.1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Micro 5.2", product: { name: "SUSE Linux Enterprise Micro 5.2", product_id: "SUSE Linux Enterprise Micro 5.2", product_identification_helper: { cpe: "cpe:/o:suse:suse-microos:5.2", }, }, }, { category: "product_name", name: "openSUSE Leap 15.3", product: { name: "openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.3", }, }, }, { category: "product_name", name: "openSUSE Leap 15.4", product: { name: "openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.4", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-apipkg-1.4-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP3", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-apipkg-1.4-150000.3.2.1.noarch", }, product_reference: "python3-apipkg-1.4-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-iniconfig-1.1.1-150000.1.3.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP3", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-iniconfig-1.1.1-150000.1.3.1.noarch", }, product_reference: "python3-iniconfig-1.1.1-150000.1.3.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.10.0-150000.5.9.2.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP3", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python3-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-apipkg-1.4-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP4", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-apipkg-1.4-150000.3.2.1.noarch", }, product_reference: "python3-apipkg-1.4-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-iniconfig-1.1.1-150000.1.3.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP4", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-iniconfig-1.1.1-150000.1.3.1.noarch", }, product_reference: "python3-iniconfig-1.1.1-150000.1.3.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.10.0-150000.5.9.2.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP4", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python3-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.aarch64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP3", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP3", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.s390x", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.x86_64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP4", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.aarch64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP4", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP4", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.s390x", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP4", product_id: "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.x86_64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Development Tools 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.aarch64", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.s390x", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.x86_64", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.aarch64", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.ppc64le", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.s390x", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.x86_64", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python2-apipkg-1.4-150000.3.2.1.noarch as component of SUSE Linux Enterprise Module for Python 2 15 SP3", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-apipkg-1.4-150000.3.2.1.noarch", }, product_reference: "python2-apipkg-1.4-150000.3.2.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 2 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-iniconfig-1.1.1-150000.1.3.1.noarch as component of SUSE Linux Enterprise Module for Python 2 15 SP3", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-iniconfig-1.1.1-150000.1.3.1.noarch", }, product_reference: "python2-iniconfig-1.1.1-150000.1.3.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 2 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python2-py-1.10.0-150000.5.9.2.noarch as component of SUSE Linux Enterprise Module for Python 2 15 SP3", product_id: "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python2-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 2 15 SP3", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.10.0-150000.5.9.2.noarch as component of SUSE Linux Enterprise Micro 5.1", product_id: "SUSE Linux Enterprise Micro 5.1:python3-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python3-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "SUSE Linux Enterprise Micro 5.1", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.10.0-150000.5.9.2.noarch as component of SUSE Linux Enterprise Micro 5.2", product_id: "SUSE Linux Enterprise Micro 5.2:python3-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python3-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "SUSE Linux Enterprise Micro 5.2", }, { category: "default_component_of", full_product_name: { name: "python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", }, product_reference: "python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-apipkg-1.4-150000.3.2.1.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-apipkg-1.4-150000.3.2.1.noarch", }, product_reference: "python2-apipkg-1.4-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python2-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.aarch64", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.s390x", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-coverage-4.5.4-150000.3.3.2.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.x86_64", }, product_reference: "python2-coverage-4.5.4-150000.3.3.2.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-py-1.10.0-150000.5.9.2.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python2-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-pycodestyle-2.5.0-150000.3.2.2.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-pycodestyle-2.5.0-150000.3.2.2.noarch", }, product_reference: "python2-pycodestyle-2.5.0-150000.3.2.2.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python2-pyflakes-2.1.1-150000.3.2.2.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python2-pyflakes-2.1.1-150000.3.2.2.noarch", }, product_reference: "python2-pyflakes-2.1.1-150000.3.2.2.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-apipkg-1.4-150000.3.2.1.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-apipkg-1.4-150000.3.2.1.noarch", }, product_reference: "python3-apipkg-1.4-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.aarch64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.s390x", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.x86_64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.10.0-150000.5.9.2.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python3-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-pycodestyle-2.5.0-150000.3.2.2.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", }, product_reference: "python3-pycodestyle-2.5.0-150000.3.2.2.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python3-pyflakes-2.1.1-150000.3.2.2.noarch as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:python3-pyflakes-2.1.1-150000.3.2.2.noarch", }, product_reference: "python3-pyflakes-2.1.1-150000.3.2.2.noarch", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", }, product_reference: "python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-apipkg-1.4-150000.3.2.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-apipkg-1.4-150000.3.2.1.noarch", }, product_reference: "python3-apipkg-1.4-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", }, product_reference: "python3-atomicwrites-1.1.5-150000.3.2.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.aarch64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.s390x", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-coverage-4.5.4-150000.3.3.2.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.x86_64", }, product_reference: "python3-coverage-4.5.4-150000.3.3.2.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-py-1.10.0-150000.5.9.2.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-py-1.10.0-150000.5.9.2.noarch", }, product_reference: "python3-py-1.10.0-150000.5.9.2.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-pycodestyle-2.5.0-150000.3.2.2.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", }, product_reference: "python3-pycodestyle-2.5.0-150000.3.2.2.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-pyflakes-2.1.1-150000.3.2.2.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-pyflakes-2.1.1-150000.3.2.2.noarch", }, product_reference: "python3-pyflakes-2.1.1-150000.3.2.2.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, ], }, vulnerabilities: [ { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Micro 5.2:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.3:python2-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python2-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.3:python2-pyflakes-2.1.1-150000.3.2.2.noarch", "openSUSE Leap 15.3:python3-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.3:python3-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.3:python3-pyflakes-2.1.1-150000.3.2.2.noarch", "openSUSE Leap 15.4:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.4:python3-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.4:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.4:python3-pyflakes-2.1.1-150000.3.2.2.noarch", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Micro 5.2:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.3:python2-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python2-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.3:python2-pyflakes-2.1.1-150000.3.2.2.noarch", "openSUSE Leap 15.3:python3-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.3:python3-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.3:python3-pyflakes-2.1.1-150000.3.2.2.noarch", "openSUSE Leap 15.4:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.4:python3-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.4:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.4:python3-pyflakes-2.1.1-150000.3.2.2.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Micro 5.2:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP3:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP4:python3-py-1.10.0-150000.5.9.2.noarch", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP3:python3-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Development Tools 15 SP4:python3-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:python2-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:python2-coverage-4.5.4-150000.3.3.2.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-apipkg-1.4-150000.3.2.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-iniconfig-1.1.1-150000.1.3.1.noarch", "SUSE Linux Enterprise Module for Python 2 15 SP3:python2-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.3:python2-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.3:python2-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python2-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.3:python2-pyflakes-2.1.1-150000.3.2.2.noarch", "openSUSE Leap 15.3:python3-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.3:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.3:python3-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.3:python3-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.3:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.3:python3-pyflakes-2.1.1-150000.3.2.2.noarch", "openSUSE Leap 15.4:python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-apipkg-1.4-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-atomicwrites-1.1.5-150000.3.2.1.noarch", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.aarch64", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.ppc64le", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.s390x", "openSUSE Leap 15.4:python3-coverage-4.5.4-150000.3.3.2.x86_64", "openSUSE Leap 15.4:python3-py-1.10.0-150000.5.9.2.noarch", "openSUSE Leap 15.4:python3-pycodestyle-2.5.0-150000.3.2.2.noarch", "openSUSE Leap 15.4:python3-pyflakes-2.1.1-150000.3.2.2.noarch", ], }, ], threats: [ { category: "impact", date: "2022-08-17T12:42:07Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
suse-su-2021:2236-1
Vulnerability from csaf_suse
Published
2021-07-02 15:24
Modified
2021-07-02 15:24
Summary
Security update for python-py
Notes
Title of the patch
Security update for python-py
Description of the patch
This update for python-py fixes the following issues:
- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).
Patchnames
SUSE-2021-2236,SUSE-OpenStack-Cloud-7-2021-2236,SUSE-SLE-SERVER-12-SP5-2021-2236
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-py", title: "Title of the patch", }, { category: "description", text: "This update for python-py fixes the following issues:\n\n- CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505).\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2021-2236,SUSE-OpenStack-Cloud-7-2021-2236,SUSE-SLE-SERVER-12-SP5-2021-2236", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2236-1.json", }, { category: "self", summary: "URL for SUSE-SU-2021:2236-1", url: "https://www.suse.com/support/update/announcement/2021/suse-su-20212236-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2021:2236-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009113.html", }, { category: "self", summary: "SUSE Bug 1179805", url: "https://bugzilla.suse.com/1179805", }, { category: "self", summary: "SUSE Bug 1184505", url: "https://bugzilla.suse.com/1184505", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, ], title: "Security update for python-py", tracking: { current_release_date: "2021-07-02T15:24:56Z", generator: { date: "2021-07-02T15:24:56Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2021:2236-1", initial_release_date: "2021-07-02T15:24:56Z", revision_history: [ { date: "2021-07-02T15:24:56Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-py-1.8.1-11.12.4.noarch", product: { name: "python-py-1.8.1-11.12.4.noarch", product_id: "python-py-1.8.1-11.12.4.noarch", }, }, { category: "product_version", name: "python3-py-1.8.1-11.12.4.noarch", product: { name: "python3-py-1.8.1-11.12.4.noarch", product_id: "python3-py-1.8.1-11.12.4.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 7", product: { name: "SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:7", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP5", product: { name: "SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sles:12:sp5", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", product: { name: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:12:sp5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-py-1.8.1-11.12.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-py-1.8.1-11.12.4.noarch", }, product_reference: "python-py-1.8.1-11.12.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-py-1.8.1-11.12.4.noarch as component of SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5:python-py-1.8.1-11.12.4.noarch", }, product_reference: "python-py-1.8.1-11.12.4.noarch", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5", }, { category: "default_component_of", full_product_name: { name: "python-py-1.8.1-11.12.4.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python-py-1.8.1-11.12.4.noarch", }, product_reference: "python-py-1.8.1-11.12.4.noarch", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", }, ], }, vulnerabilities: [ { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Server 12 SP5:python-py-1.8.1-11.12.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python-py-1.8.1-11.12.4.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.12.4.noarch", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Server 12 SP5:python-py-1.8.1-11.12.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python-py-1.8.1-11.12.4.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.12.4.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Server 12 SP5:python-py-1.8.1-11.12.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:python-py-1.8.1-11.12.4.noarch", "SUSE OpenStack Cloud 7:python-py-1.8.1-11.12.4.noarch", ], }, ], threats: [ { category: "impact", date: "2021-07-02T15:24:56Z", details: "moderate", }, ], title: "CVE-2020-29651", }, ], }
suse-su-2021:1962-1
Vulnerability from csaf_suse
Published
2021-06-11 13:13
Modified
2021-06-11 13:13
Summary
Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone
Notes
Title of the patch
Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone
Description of the patch
This update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone contains the following fixes:
Security fixes included in this update:
cassandra:
- CVE-2020-17516: Fixed an issue where encryption between nodes was not enforced
correctly for certain internode_encryption settings (bsc#1181689)
grafana:
- CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed multiple cross
site scripting vulnerabilities in the dashboard. (bsc#1172450)
- CVE-2021-27358: Fixed a denial of service via remote API call. (bsc#1183803)
- CVE-2019-15043: Fixed a denial of service by an unauthenticated user
in the snapshot HTTP API (bsc#1148383)
- CVE-2020-13379: Fixed an information leak to unauthenticated users. (bsc#1172409)
- CVE-2020-12052: Fixed a cross site scripting vulnerability with the annotation
popup (bsc#1170657)
- CVE-2018-19039: Fixed an issue where a privileged user could
exfiltrate files (bsc#1115960)
- CVE-2020-11110: Fixed a stored cross site scripting vulnerability. (bsc#1174583)
- CVE-2020-24303: Fixed a cross site scripting vulnerability in a query alias for
ElasticSearch datasources (bsc#1178243)
kibana:
- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the HashTable
implementation, which could cause a denial of service. (bsc#1044849)
- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL fields.
(bsc#1044849)
- CVE-2020-10743: Fixed a clickjacking issue because X-Frame-Option was not used
by default. (bsc#1171909)
python-Django:
- CVE-2021-23336: Fixed a web cache poisoning via django.utils.http.limited_parse_qsl().
(bsc#1182433)
- CVE-2021-28658: Fixed a directory traversal via uploaded files. (bsc#1184148)
- CVE-2021-31542: Fixed a directory traversal via uploaded files with suitably crafted
file names. (bsc#1185623)
- CVE-2021-33203: Fixed potential path-traversal via admindocs' TemplateDetailView.
(bsc#1186608)
- CVE-2021-33571: Tighten validator checks to not allow leading zeros in IPv4 addresses,
which potentially leads to further attacks. (bsc#1186611)
python-py:
- CVE-2020-29651: Fixed a denial of service via regular expressions. (bsc#1179805)
python-pysaml2:
- CVE-2021-21238: Fixed improper verification of cryptographic signatures for signed
SAML documents. (bsc#1181277)
- CVE-2021-21239: Fixed improper verification of cryptographic signatures when using
CryptoBackendXmlSec1(). (bsc#1181278)
rubygem-activerecord-session_store:
- CVE-2019-25025: Fixed a timing attacks targeting the session id which could allow
an attack to hijack sessions. (bsc#1183174)
Non-security changes included in this update:
Changes in ardana-neutron:
- Update to version 9.0+git.1615223676.777f0b3:
* Allow users to stop monitoring rootwrap daemon (bsc#1182317)
Changes in ardana-swift:
- Update to version 9.0+git.1618235096.90974ed:
* Run swiftlm-scan in the UTC timezone (bsc#1181690)
Changes in cassandra:
- update to 3.11.10 (bsc#1181689, CVE-2020-17516)
* Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)
* Reduce amount of allocations during batch statement execution (CASSANDRA-16201)
* Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)
* Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)
* Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)
* SASI's `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)
* Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)
* Improve empty hint file handling during startup (CASSANDRA-16162)
* Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)
* Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)
* Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)
* Synchronize transaction logs for JBOD (CASSANDRA-16225)
* Fix the counting of cells per partition (CASSANDRA-16259)
* Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)
* Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)
* Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)
* Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)
* Remove the SEPExecutor blocking behavior (CASSANDRA-16186)
* Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)
* Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)
* Wait for schema agreement when bootstrapping (CASSANDRA-15158)
* Fix the histogram merge of the table metrics (CASSANDRA-16259)
* Synchronize Keyspace instance store/clear (CASSANDRA-16210)
* Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)
* Fix memory leak in CompressedChunkReader (CASSANDRA-15880)
* Don't attempt value skipping with mixed version cluster (CASSANDRA-15833)
* Avoid failing compactions with very large partitions (CASSANDRA-15164)
* Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)
* Fix OOM when terminating repair session (CASSANDRA-15902)
* Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)
* Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)
* Handle unexpected columns due to schema races (CASSANDRA-15899)
* Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)
* Package tools/bin scripts as executable (CASSANDRA-16151)
* Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)
* Correctly interpret SASI's `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)
* Fix short read protection for GROUP BY queries (CASSANDRA-15459)
* Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)
Merged from 3.0:
* Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)
* Fix gossip shutdown order (CASSANDRA-15816)
* Remove broken 'defrag-on-read' optimization (CASSANDRA-15432)
* Check for endpoint collision with hibernating nodes (CASSANDRA-14599)
* Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)
* stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)
* Forbid altering UDTs used in partition keys (CASSANDRA-15933)
* Fix empty/null json string representation (CASSANDRA-15896)
* 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)
* Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)
Merged from 2.2:
* Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)
* Only allow strings to be passed to JMX authentication (CASSANDRA-16077)
* Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)
* Upgrade Jackson to 2.9.10 (CASSANDRA-15867)
* Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)
* Allow sstableloader to use SSL on the native port (CASSANDRA-14904)
* Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)
* Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)
* Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)
* Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)
* Add token to tombstone warning and error messages (CASSANDRA-15890)
* Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)
* Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)
* Fix replica-side filtering returning stale data with CL > ONE (CASSANDRA-8272, CASSANDRA-8273)
* Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)
* Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)
* EmptyType doesn't override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)
* Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)
* Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)
* liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)
* Fix Debian init start/stop (CASSANDRA-15770)
* Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)
* Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)
* Allow selecting static column only when querying static index (CASSANDRA-14242)
* cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)
* Don't skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)
* Memtable memory allocations may deadlock (CASSANDRA-15367)
* Run evictFromMembership in GossipStage (CASSANDRA-15592)
* Fix nomenclature of allow and deny lists (CASSANDRA-15862)
* Remove generated files from source artifact (CASSANDRA-15849)
* Remove duplicated tools binaries from tarballs (CASSANDRA-15768)
* Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)
* Disable JMX rebinding (CASSANDRA-15653)
* Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)
* Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)
* Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)
* Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)
* Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)
* Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)
* Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)
* Fix SELECT JSON formatting for the 'duration' type (CASSANDRA-15075)
* Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)
* Update nodetool help stop output (CASSANDRA-15401)
* Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)
* Include updates to static column in mutation size calculations (CASSANDRA-15293)
* Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)
* GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)
* Fix sstabledump's position key value when partitions have multiple rows (CASSANDRA-14721)
* Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)
* Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11
(CASSANDRA-15441)
* Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)
* Fix various data directory prefix matching issues (CASSANDRA-13974)
* Minimize clustering values in metadata collector (CASSANDRA-15400)
* Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)
* validate value sizes in LegacyLayout (CASSANDRA-15373)
* Ensure that tracing doesn't break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)
* Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)
* Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)
* Fix race condition when setting bootstrap flags (CASSANDRA-14878)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SELECT JSON output for empty blobs (CASSANDRA-15435)
* In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)
* In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)
* Make sure user defined compaction transactions are always closed (CASSANDRA-15123)
* Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)
* Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)
* Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)
* Add ability to cap max negotiable protocol version (CASSANDRA-15193)
* Gossip tokens on startup if available (CASSANDRA-15335)
* Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)
* Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)
* Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)
* Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)
* Filter sstables earlier when running cleanup (CASSANDRA-15100)
* Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)
* Avoid updating unchanged gossip states (CASSANDRA-15097)
* Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)
* Prevent client requests from blocking on executor task queue (CASSANDRA-15013)
* Toughen up column drop/recreate type validations (CASSANDRA-15204)
* LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)
* Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)
* Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)
* Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)
* Handle paging states serialized with a different version than the session's (CASSANDRA-15176)
* Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)
* Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)
* Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)
* Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)
* Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)
* Fix mixed mode partition range scans with limit (CASSANDRA-15072)
* cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)
* Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)
* Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)
* Improve `nodetool status -r` speed (CASSANDRA-14847)
* Improve merkle tree size and time on heap (CASSANDRA-14096)
* Add missing commands to nodetool_completion (CASSANDRA-14916)
* Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)
* Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)
* Handle exceptions during authentication/authorization (CASSANDRA-15041)
* Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)
* Fix index summary redistribution cancellation (CASSANDRA-15045)
* Fixing invalid CQL in security documentation (CASSANDRA-15020)
* Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)
* Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)
* Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)
* Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser
* Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)
* If SizeEstimatesRecorder misses a 'onDropTable' notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)
* Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)
* Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)
* Fix cassandra-stress write hang with default options (CASSANDRA-14616)
* Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)
* Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)
* Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)
* RangeTombstoneList doesn't properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)
* Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)
* Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)
* Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)
* Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)
* Move TWCS message 'No compaction necessary for bucket size' to Trace level (CASSANDRA-14884)
* Sstable min/max metadata can cause data loss (CASSANDRA-14861)
* Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)
* Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)
* Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)
* Reverse order reads can return incomplete results (CASSANDRA-14803)
* Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)
* Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)
* DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)
* Fix corrupted collection deletions for dropped columns in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)
* Fix corrupted static collection deletions in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)
* Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)
* Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)
* Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)
* Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)
* sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)
* Fix reading columns with non-UTF names from schema (CASSANDRA-14468)
* Don't enable client transports when bootstrap is pending (CASSANDRA-14525)
* MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)
* Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)
* Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)
* Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)
Changes in crowbar-openstack:
- Update to version 6.0+git.1616146717.a89ae0f4e:
* monasca: restart Kibana on update (bsc#1044849)
Changes in grafana
- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)
* Prevent unauthenticated remote attackers from causing a DoS through the
snapshots API.
Changes in kibana:
- Ensure /etc/sysconfig/kibana is present
- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, ESA-2017-16)
* [4.6] ignore forked code for babel transpile build phase (#13483)
* Allow more than match queries in custom filters (#8614) (#10857)
* [state] don't make extra $location.replace() calls (#9954)
* [optimizer] move to querystring-browser package for up-to-date api
* [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls
* server: refactor log_interceptor to be more DRY (#9617)
* server: downgrade ECANCELED logs to debug (#9616)
* server: do not treat logged warnings as errors (#8746) (#9610)
* [server/logger] downgrade EPIPE errors to debug level (#9023)
* Add basepath when redirecting from a trailling slash (#9035)
* [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)
* [server/shortUrl] validate urls before shortening them
- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)
* This fixes an XSS vulnerability in URL fields
- Remove %dir declaration from /opt/kibana/optimize to ensure
no files owned by root end up in there
- Exclude /opt/kibana/optimize from %fdupes
- Restart service on upgrade
- Do not copy LICENSE.txt and README.txt to /opt/kibana
- Fix rpmlint warnings/errors
- Switch to explicit patch application
- Fix source URL
- Fix logic for systemd/systemv detection
- Add 0001-Configurable-custom-response-headers-for-server.patch
(bsc#1171909, CVE-2020-10743)
- Added kibana.yml symlink (bsc#1048688, FATE#323204)
Changes in openstack-dashboard:
- Update to version horizon-14.1.1.dev11:
* Consume tempest-horizon from PyPI release
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev17:
* Remove lower-constraints job
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev17:
* Remove lower-constraints job
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev164:
* Schedule networks to new segments if needed
- Update to version neutron-13.0.8.dev162:
* Fix invalid JSON generated by quota details
- Update to version neutron-13.0.8.dev160:
* Fix deletion of rfp interfaces when router is re-enabled
- Update to version neutron-13.0.8.dev159:
* [OVS FW] Allow egress ICMPv6 only for know addresses
* [OVS FW] Clean conntrack entries with mark == CT\_MARK\_INVALID
- Update to version neutron-13.0.8.dev155:
* Fix removal of dvr-src mac flows when non-gateway port on router is deleted
- Update to version neutron-13.0.8.dev153:
* Add some wait time between stopping and starting again ovsdb monitor
* Workaround for TCP checksum issue with ovs-dpdk and veth pair
- Update to version neutron-13.0.8.dev149:
* Fix wrong packet\_type set for IPv6 GRE tunnels in OVS
- Update to version neutron-13.0.8.dev148:
* Fix losses of ovs flows when ovs is restarted
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev164:
* Schedule networks to new segments if needed
- Update to version neutron-13.0.8.dev162:
* Fix invalid JSON generated by quota details
- Update to version neutron-13.0.8.dev160:
* Fix deletion of rfp interfaces when router is re-enabled
- Update to version neutron-13.0.8.dev159:
* [OVS FW] Allow egress ICMPv6 only for know addresses
* [OVS FW] Clean conntrack entries with mark == CT\_MARK\_INVALID
- Update to version neutron-13.0.8.dev155:
* Fix removal of dvr-src mac flows when non-gateway port on router is deleted
- Update to version neutron-13.0.8.dev153:
* Add some wait time between stopping and starting again ovsdb monitor
* Workaround for TCP checksum issue with ovs-dpdk and veth pair
- Update to version neutron-13.0.8.dev149:
* Fix wrong packet\_type set for IPv6 GRE tunnels in OVS
- Update to version neutron-13.0.8.dev148:
* Fix losses of ovs flows when ovs is restarted
Changes in openstack-neutron-gbp:
- Update to version group-based-policy-12.0.1.dev29:
* gbp-validate: Tenant and resource level scoping
2014.2.0rc1
- Update to version group-based-policy-12.0.1.dev27:
* Import data\_utils from the new location
- Update to version group-based-policy-12.0.1.dev26:
* Add SNAT port's Mac Address to the host\_snat\_ips dictionary
- Update to version group-based-policy-12.0.1.dev25:
* Add support for victoria
2014.2.rc1
- Update to version group-based-policy-12.0.1.dev24:
* Fix deletion of SVI networks
- Update to version group-based-policy-12.0.1.dev23:
* Allow per-port qos configuration on dhcp port
2014.2rc1
- Update to version group-based-policy-12.0.1.dev22:
* Add connectivity parameter to driver
* [AIM] Fix ERSPAN extension
2014.2.rc1
- Update to version group-based-policy-12.0.1.dev19:
* Fix exception with cleanup
2014.2.0rc1
- Update to version group-based-policy-12.0.1.dev18:
* Add workaround to get\_subnets
Changes in openstack-nova:
- Update to version nova-18.3.1.dev82:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
* Change default num\_retries for glance to 3
Changes in openstack-nova:
- Update to version nova-18.3.1.dev82:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
* Change default num\_retries for glance to 3
Changes in python-Django1:
- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)
* Fixed potential path-traversal via admindocs' TemplateDetailView.
- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)
* Prevented leading zeros in IPv4 addresses.
- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)
* Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file
uploads.
- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)
* Fixed potential directory-traversal via uploaded files
- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)
* Fixed web cache poisoning via django.utils.http.limited_parse_qsl()
Changes in python-py:
- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)
* svnwc: fix regular expression vulnerable to DoS in blame
functionality
Changes in python-pysaml2:
- Fix patches (SOC-11453)
* 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch
- rename saml2.xml to saml2.samlxml to avoid overriding
the xml module in the system module path
- add missing __init__.py files
- add missing saml2/data package to setup.py
* 0007-Make-previous-commits-python2-compatible.patch so as not to
- Adjust to saml2.xml to saml2.samlxml changes
- Fix a few more syntax errors and Python2-isms.
- Fix CVE-2021-21238, bsc#1181277 with
0002-Strengthen-XSW-tests.patch ,
0003-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,
0004-Add-xsd-schemas.patch ,
0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .
This adds a dependency on python-xmlschema, which depends on
python-elementpath, thus both need to be added for this to work.
The used python-xmlschema needs to support the sandbox argument
which was added in 1.2.0 and refined in 1.2.1, but that version
doesn't support python2, so a patched version that does both is
needed.
Add 0007-Make-previous-commits-python2-compatible.patch to
not add a dependency on reportlib_resources and make other
changes python2 compatible.
. Fix CVE-2021-21239, bsc#1181278 with
0006-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch
Changes in python-xmlschema:
- Add 3 patches to backport sandbox argument, which is needed by a security fix
in python-pysaml2 and one patch to make backport python2 compatible.
- Upstream url changed
- Add rpmlintrc to make it work on Leap 42.3
- Update to 1.0.18:
* Fix for *ModelVisitor.iter_unordered_content()*
* Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode
* Fixed validation tests with all converters
* Added UnorderedConverter to validation tests
- Update to 1.0.17:
* Enhancement of validation-only speed (~15%)
* Added *is_valid()* and *iter_errors()* to module API
- Update to 1.0.16:
* Improved XMLResource class for working with compressed files
* Fix for validation with XSD wildcards and 'lax' process content
* Fix ambiguous items validation for xs:choice and xs:sequence models
- Handle UnicodeDecodeErrors during build process
- Update to 1.0.15:
* Improved XPath 2.0 bindings
* Added logging for schema initialization and building (handled with argument loglevel)
* Update encoding of collapsed contents with a new model based reordering method
* Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)
* Fixed half of failed W3C instance tests (remain 255 over 15344 tests)
- Initial commit, needed by pytest 5.1.2
Changes in python-elementpath:
- Update to 1.3.1:
* Improved schema proxy
* Improved XSD type matching using paths
* Cached parent path for XPathContext (only Python 3)
* Improve typed selection with TypedAttribute and TypedElement named-tuples
* Add iter_results to XPathContext
* Remove XMLSchemaProxy from package
* Fix descendant shortcut operator '//'
* Fix text() function
* Fix typed select of '(name)' token
* Fix 24-hour time for DateTime
- Skip test_hashing to fix 32bit builds
- Initial commit needed by python-xmlschema
Changes in rubygem-activerecord-session_store:
- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)
* This requires CVE-2019-16782.patch to be included in
rubygem-actionpack-4_2 to work correctly.
Changes in venv-openstack-keystone
- Add python-xmlschema and python-elementpath for new python-pysaml2 version.
Patchnames
SUSE-2021-1962,SUSE-OpenStack-Cloud-9-2021-1962,SUSE-OpenStack-Cloud-Crowbar-9-2021-1962
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone", title: "Title of the patch", }, { category: "description", text: "This update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone contains the following fixes:\n\nSecurity fixes included in this update:\n\ncassandra:\n- CVE-2020-17516: Fixed an issue where encryption between nodes was not enforced\n correctly for certain internode_encryption settings (bsc#1181689)\n\ngrafana:\n- CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed multiple cross\n site scripting vulnerabilities in the dashboard. (bsc#1172450)\n- CVE-2021-27358: Fixed a denial of service via remote API call. (bsc#1183803)\n- CVE-2019-15043: Fixed a denial of service by an unauthenticated user\n in the snapshot HTTP API (bsc#1148383)\n- CVE-2020-13379: Fixed an information leak to unauthenticated users. (bsc#1172409)\n- CVE-2020-12052: Fixed a cross site scripting vulnerability with the annotation\n popup (bsc#1170657)\n- CVE-2018-19039: Fixed an issue where a privileged user could\n exfiltrate files (bsc#1115960)\n- CVE-2020-11110: Fixed a stored cross site scripting vulnerability. (bsc#1174583)\n- CVE-2020-24303: Fixed a cross site scripting vulnerability in a query alias for\n ElasticSearch datasources (bsc#1178243)\n\nkibana:\n- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the HashTable\n implementation, which could cause a denial of service. (bsc#1044849)\n- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL fields.\n (bsc#1044849)\n- CVE-2020-10743: Fixed a clickjacking issue because X-Frame-Option was not used\n by default. (bsc#1171909)\n\npython-Django:\n- CVE-2021-23336: Fixed a web cache poisoning via django.utils.http.limited_parse_qsl().\n (bsc#1182433)\n- CVE-2021-28658: Fixed a directory traversal via uploaded files. (bsc#1184148)\n- CVE-2021-31542: Fixed a directory traversal via uploaded files with suitably crafted\n file names. (bsc#1185623)\n- CVE-2021-33203: Fixed potential path-traversal via admindocs' TemplateDetailView.\n (bsc#1186608)\n- CVE-2021-33571: Tighten validator checks to not allow leading zeros in IPv4 addresses,\n which potentially leads to further attacks. (bsc#1186611)\n\npython-py:\n- CVE-2020-29651: Fixed a denial of service via regular expressions. (bsc#1179805)\n\npython-pysaml2:\n- CVE-2021-21238: Fixed improper verification of cryptographic signatures for signed\n SAML documents. (bsc#1181277)\n- CVE-2021-21239: Fixed improper verification of cryptographic signatures when using\n CryptoBackendXmlSec1(). (bsc#1181278)\n\nrubygem-activerecord-session_store:\n- CVE-2019-25025: Fixed a timing attacks targeting the session id which could allow\n an attack to hijack sessions. (bsc#1183174)\n\n\nNon-security changes included in this update:\n\nChanges in ardana-neutron:\n- Update to version 9.0+git.1615223676.777f0b3:\n * Allow users to stop monitoring rootwrap daemon (bsc#1182317)\n\nChanges in ardana-swift:\n- Update to version 9.0+git.1618235096.90974ed:\n * Run swiftlm-scan in the UTC timezone (bsc#1181690)\n\nChanges in cassandra:\n- update to 3.11.10 (bsc#1181689, CVE-2020-17516) \n * Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)\n * Reduce amount of allocations during batch statement execution (CASSANDRA-16201)\n * Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)\n * Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)\n * Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)\n * SASI's `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)\n * Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)\n * Improve empty hint file handling during startup (CASSANDRA-16162)\n * Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)\n * Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)\n * Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)\n * Synchronize transaction logs for JBOD (CASSANDRA-16225)\n * Fix the counting of cells per partition (CASSANDRA-16259)\n * Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)\n * Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)\n * Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)\n * Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)\n * Remove the SEPExecutor blocking behavior (CASSANDRA-16186)\n * Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)\n * Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)\n * Wait for schema agreement when bootstrapping (CASSANDRA-15158)\n * Fix the histogram merge of the table metrics (CASSANDRA-16259)\n * Synchronize Keyspace instance store/clear (CASSANDRA-16210)\n * Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)\n * Fix memory leak in CompressedChunkReader (CASSANDRA-15880)\n * Don't attempt value skipping with mixed version cluster (CASSANDRA-15833)\n * Avoid failing compactions with very large partitions (CASSANDRA-15164)\n * Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)\n * Fix OOM when terminating repair session (CASSANDRA-15902)\n * Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)\n * Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)\n * Handle unexpected columns due to schema races (CASSANDRA-15899)\n * Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)\n * Package tools/bin scripts as executable (CASSANDRA-16151)\n * Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)\n * Correctly interpret SASI's `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)\n * Fix short read protection for GROUP BY queries (CASSANDRA-15459)\n * Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)\nMerged from 3.0:\n * Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)\n * Fix gossip shutdown order (CASSANDRA-15816)\n * Remove broken 'defrag-on-read' optimization (CASSANDRA-15432)\n * Check for endpoint collision with hibernating nodes (CASSANDRA-14599)\n * Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)\n * stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)\n * Forbid altering UDTs used in partition keys (CASSANDRA-15933)\n * Fix empty/null json string representation (CASSANDRA-15896)\n * 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)\n * Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)\nMerged from 2.2:\n * Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)\n * Only allow strings to be passed to JMX authentication (CASSANDRA-16077)\n * Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)\n * Upgrade Jackson to 2.9.10 (CASSANDRA-15867)\n * Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)\n * Allow sstableloader to use SSL on the native port (CASSANDRA-14904)\n * Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)\n * Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)\n * Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)\n * Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)\n * Add token to tombstone warning and error messages (CASSANDRA-15890)\n * Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)\n * Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)\n * Fix replica-side filtering returning stale data with CL > ONE (CASSANDRA-8272, CASSANDRA-8273)\n * Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)\n * Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)\n * EmptyType doesn't override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)\n * Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)\n * Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)\n * liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)\n * Fix Debian init start/stop (CASSANDRA-15770)\n * Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)\n * Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)\n * Allow selecting static column only when querying static index (CASSANDRA-14242)\n * cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)\n * Don't skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)\n * Memtable memory allocations may deadlock (CASSANDRA-15367)\n * Run evictFromMembership in GossipStage (CASSANDRA-15592)\n * Fix nomenclature of allow and deny lists (CASSANDRA-15862)\n * Remove generated files from source artifact (CASSANDRA-15849)\n * Remove duplicated tools binaries from tarballs (CASSANDRA-15768)\n * Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)\n * Disable JMX rebinding (CASSANDRA-15653)\n * Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)\n * Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)\n * Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)\n * Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)\n * Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)\n * Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)\n * Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)\n * Fix SELECT JSON formatting for the 'duration' type (CASSANDRA-15075)\n * Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)\n * Update nodetool help stop output (CASSANDRA-15401)\n * Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)\n * Include updates to static column in mutation size calculations (CASSANDRA-15293)\n * Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)\n * GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)\n * Fix sstabledump's position key value when partitions have multiple rows (CASSANDRA-14721)\n * Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)\n * Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11\n (CASSANDRA-15441)\n * Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)\n * Fix various data directory prefix matching issues (CASSANDRA-13974)\n * Minimize clustering values in metadata collector (CASSANDRA-15400)\n * Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)\n * validate value sizes in LegacyLayout (CASSANDRA-15373)\n * Ensure that tracing doesn't break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)\n * Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)\n * Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)\n * Fix race condition when setting bootstrap flags (CASSANDRA-14878)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SELECT JSON output for empty blobs (CASSANDRA-15435)\n * In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)\n * In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)\n * Make sure user defined compaction transactions are always closed (CASSANDRA-15123)\n * Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)\n * Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)\n * Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)\n * Add ability to cap max negotiable protocol version (CASSANDRA-15193)\n * Gossip tokens on startup if available (CASSANDRA-15335)\n * Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)\n * Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)\n * Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)\n * Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)\n * Filter sstables earlier when running cleanup (CASSANDRA-15100)\n * Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)\n * Avoid updating unchanged gossip states (CASSANDRA-15097)\n * Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)\n * Prevent client requests from blocking on executor task queue (CASSANDRA-15013)\n * Toughen up column drop/recreate type validations (CASSANDRA-15204)\n * LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)\n * Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)\n * Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)\n * Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)\n * Handle paging states serialized with a different version than the session's (CASSANDRA-15176)\n * Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)\n * Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)\n * Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)\n * Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)\n * Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)\n * Fix mixed mode partition range scans with limit (CASSANDRA-15072)\n * cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)\n * Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)\n * Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)\n * Improve `nodetool status -r` speed (CASSANDRA-14847)\n * Improve merkle tree size and time on heap (CASSANDRA-14096)\n * Add missing commands to nodetool_completion (CASSANDRA-14916)\n * Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)\n * Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)\n * Handle exceptions during authentication/authorization (CASSANDRA-15041)\n * Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)\n * Fix index summary redistribution cancellation (CASSANDRA-15045)\n * Fixing invalid CQL in security documentation (CASSANDRA-15020)\n * Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)\n * Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)\n * Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)\n * Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser\n * Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)\n * If SizeEstimatesRecorder misses a 'onDropTable' notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)\n * Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)\n * Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)\n * Fix cassandra-stress write hang with default options (CASSANDRA-14616)\n * Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)\n * Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)\n * Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)\n * RangeTombstoneList doesn't properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)\n * Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)\n * Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)\n * Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)\n * Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)\n * Move TWCS message 'No compaction necessary for bucket size' to Trace level (CASSANDRA-14884)\n * Sstable min/max metadata can cause data loss (CASSANDRA-14861)\n * Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)\n * Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)\n * Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)\n * Reverse order reads can return incomplete results (CASSANDRA-14803)\n * Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)\n * Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)\n * DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)\n * Fix corrupted collection deletions for dropped columns in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)\n * Fix corrupted static collection deletions in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)\n * Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)\n * Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)\n * Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)\n * Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)\n * sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)\n * Fix reading columns with non-UTF names from schema (CASSANDRA-14468)\n * Don't enable client transports when bootstrap is pending (CASSANDRA-14525)\n * MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)\n * Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)\n * Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)\n * Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)\n\nChanges in crowbar-openstack:\n- Update to version 6.0+git.1616146717.a89ae0f4e:\n * monasca: restart Kibana on update (bsc#1044849)\n\nChanges in grafana\n- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)\n * Prevent unauthenticated remote attackers from causing a DoS through the\n snapshots API.\n\nChanges in kibana:\n- Ensure /etc/sysconfig/kibana is present\n\n- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, ESA-2017-16)\n * [4.6] ignore forked code for babel transpile build phase (#13483)\n * Allow more than match queries in custom filters (#8614) (#10857)\n * [state] don't make extra $location.replace() calls (#9954)\n * [optimizer] move to querystring-browser package for up-to-date api\n * [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls\n * server: refactor log_interceptor to be more DRY (#9617)\n * server: downgrade ECANCELED logs to debug (#9616)\n * server: do not treat logged warnings as errors (#8746) (#9610)\n * [server/logger] downgrade EPIPE errors to debug level (#9023)\n * Add basepath when redirecting from a trailling slash (#9035)\n * [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)\n * [server/shortUrl] validate urls before shortening them\n- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)\n * This fixes an XSS vulnerability in URL fields\n- Remove %dir declaration from /opt/kibana/optimize to ensure\n no files owned by root end up in there\n- Exclude /opt/kibana/optimize from %fdupes\n- Restart service on upgrade\n- Do not copy LICENSE.txt and README.txt to /opt/kibana\n- Fix rpmlint warnings/errors\n- Switch to explicit patch application\n- Fix source URL\n- Fix logic for systemd/systemv detection\n\n- Add 0001-Configurable-custom-response-headers-for-server.patch\n (bsc#1171909, CVE-2020-10743)\n\n- Added kibana.yml symlink (bsc#1048688, FATE#323204)\nChanges in openstack-dashboard:\n- Update to version horizon-14.1.1.dev11:\n * Consume tempest-horizon from PyPI release\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev17:\n * Remove lower-constraints job\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev17:\n * Remove lower-constraints job\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev164:\n * Schedule networks to new segments if needed\n\n- Update to version neutron-13.0.8.dev162:\n * Fix invalid JSON generated by quota details\n\n- Update to version neutron-13.0.8.dev160:\n * Fix deletion of rfp interfaces when router is re-enabled\n\n- Update to version neutron-13.0.8.dev159:\n * [OVS FW] Allow egress ICMPv6 only for know addresses\n * [OVS FW] Clean conntrack entries with mark == CT\\_MARK\\_INVALID\n\n- Update to version neutron-13.0.8.dev155:\n * Fix removal of dvr-src mac flows when non-gateway port on router is deleted\n\n- Update to version neutron-13.0.8.dev153:\n * Add some wait time between stopping and starting again ovsdb monitor\n * Workaround for TCP checksum issue with ovs-dpdk and veth pair\n\n- Update to version neutron-13.0.8.dev149:\n * Fix wrong packet\\_type set for IPv6 GRE tunnels in OVS\n\n- Update to version neutron-13.0.8.dev148:\n * Fix losses of ovs flows when ovs is restarted\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev164:\n * Schedule networks to new segments if needed\n\n- Update to version neutron-13.0.8.dev162:\n * Fix invalid JSON generated by quota details\n\n- Update to version neutron-13.0.8.dev160:\n * Fix deletion of rfp interfaces when router is re-enabled\n\n- Update to version neutron-13.0.8.dev159:\n * [OVS FW] Allow egress ICMPv6 only for know addresses\n * [OVS FW] Clean conntrack entries with mark == CT\\_MARK\\_INVALID\n\n- Update to version neutron-13.0.8.dev155:\n * Fix removal of dvr-src mac flows when non-gateway port on router is deleted\n\n- Update to version neutron-13.0.8.dev153:\n * Add some wait time between stopping and starting again ovsdb monitor\n * Workaround for TCP checksum issue with ovs-dpdk and veth pair\n\n- Update to version neutron-13.0.8.dev149:\n * Fix wrong packet\\_type set for IPv6 GRE tunnels in OVS\n\n- Update to version neutron-13.0.8.dev148:\n * Fix losses of ovs flows when ovs is restarted\n\nChanges in openstack-neutron-gbp:\n- Update to version group-based-policy-12.0.1.dev29:\n * gbp-validate: Tenant and resource level scoping\n 2014.2.0rc1\n\n- Update to version group-based-policy-12.0.1.dev27:\n * Import data\\_utils from the new location\n\n- Update to version group-based-policy-12.0.1.dev26:\n * Add SNAT port's Mac Address to the host\\_snat\\_ips dictionary\n\n- Update to version group-based-policy-12.0.1.dev25:\n * Add support for victoria\n 2014.2.rc1\n\n- Update to version group-based-policy-12.0.1.dev24:\n * Fix deletion of SVI networks\n\n- Update to version group-based-policy-12.0.1.dev23:\n * Allow per-port qos configuration on dhcp port\n 2014.2rc1\n\n- Update to version group-based-policy-12.0.1.dev22:\n * Add connectivity parameter to driver\n * [AIM] Fix ERSPAN extension\n 2014.2.rc1\n\n- Update to version group-based-policy-12.0.1.dev19:\n * Fix exception with cleanup\n 2014.2.0rc1\n\n- Update to version group-based-policy-12.0.1.dev18:\n * Add workaround to get\\_subnets\n\nChanges in openstack-nova:\n- Update to version nova-18.3.1.dev82:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n * Change default num\\_retries for glance to 3\n\nChanges in openstack-nova:\n- Update to version nova-18.3.1.dev82:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n * Change default num\\_retries for glance to 3\n\nChanges in python-Django1:\n- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)\n * Fixed potential path-traversal via admindocs' TemplateDetailView.\n- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)\n * Prevented leading zeros in IPv4 addresses.\n\n- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)\n * Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file\n uploads.\n\n- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)\n * Fixed potential directory-traversal via uploaded files\n\n- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)\n * Fixed web cache poisoning via django.utils.http.limited_parse_qsl()\n\n\nChanges in python-py:\n- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)\n * svnwc: fix regular expression vulnerable to DoS in blame\n functionality\n\nChanges in python-pysaml2:\n- Fix patches (SOC-11453)\n * 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch\n - rename saml2.xml to saml2.samlxml to avoid overriding\n the xml module in the system module path\n - add missing __init__.py files\n - add missing saml2/data package to setup.py\n * 0007-Make-previous-commits-python2-compatible.patch so as not to\n - Adjust to saml2.xml to saml2.samlxml changes\n - Fix a few more syntax errors and Python2-isms.\n\n- Fix CVE-2021-21238, bsc#1181277 with\n 0002-Strengthen-XSW-tests.patch ,\n 0003-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,\n 0004-Add-xsd-schemas.patch ,\n 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .\n This adds a dependency on python-xmlschema, which depends on\n python-elementpath, thus both need to be added for this to work.\n The used python-xmlschema needs to support the sandbox argument\n which was added in 1.2.0 and refined in 1.2.1, but that version\n doesn't support python2, so a patched version that does both is\n needed.\n Add 0007-Make-previous-commits-python2-compatible.patch to\n not add a dependency on reportlib_resources and make other\n changes python2 compatible.\n. Fix CVE-2021-21239, bsc#1181278 with\n 0006-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch\n\nChanges in python-xmlschema:\n\n- Add 3 patches to backport sandbox argument, which is needed by a security fix\n in python-pysaml2 and one patch to make backport python2 compatible.\n- Upstream url changed\n- Add rpmlintrc to make it work on Leap 42.3\n- Update to 1.0.18:\n * Fix for *ModelVisitor.iter_unordered_content()*\n * Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode\n * Fixed validation tests with all converters\n * Added UnorderedConverter to validation tests\n- Update to 1.0.17:\n * Enhancement of validation-only speed (~15%)\n * Added *is_valid()* and *iter_errors()* to module API\n- Update to 1.0.16:\n * Improved XMLResource class for working with compressed files\n * Fix for validation with XSD wildcards and 'lax' process content\n * Fix ambiguous items validation for xs:choice and xs:sequence models\n\n- Handle UnicodeDecodeErrors during build process\n\n- Update to 1.0.15:\n * Improved XPath 2.0 bindings\n * Added logging for schema initialization and building (handled with argument loglevel)\n * Update encoding of collapsed contents with a new model based reordering method\n * Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)\n * Fixed half of failed W3C instance tests (remain 255 over 15344 tests)\n\n- Initial commit, needed by pytest 5.1.2\nChanges in python-elementpath:\n\n- Update to 1.3.1:\n * Improved schema proxy\n * Improved XSD type matching using paths\n * Cached parent path for XPathContext (only Python 3)\n * Improve typed selection with TypedAttribute and TypedElement named-tuples\n * Add iter_results to XPathContext\n * Remove XMLSchemaProxy from package\n * Fix descendant shortcut operator '//'\n * Fix text() function\n * Fix typed select of '(name)' token\n * Fix 24-hour time for DateTime\n\n- Skip test_hashing to fix 32bit builds\n\n- Initial commit needed by python-xmlschema\nChanges in rubygem-activerecord-session_store:\n- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)\n * This requires CVE-2019-16782.patch to be included in\n rubygem-actionpack-4_2 to work correctly.\n\nChanges in venv-openstack-keystone\n- Add python-xmlschema and python-elementpath for new python-pysaml2 version.\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2021-1962,SUSE-OpenStack-Cloud-9-2021-1962,SUSE-OpenStack-Cloud-Crowbar-9-2021-1962", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1962-1.json", }, { category: "self", summary: "URL for SUSE-SU-2021:1962-1", url: "https://www.suse.com/support/update/announcement/2021/suse-su-20211962-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2021:1962-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2021-June/009001.html", }, { category: "self", summary: "SUSE Bug 1044849", url: "https://bugzilla.suse.com/1044849", }, { category: "self", summary: "SUSE Bug 1048688", url: "https://bugzilla.suse.com/1048688", }, { category: "self", summary: "SUSE Bug 1115960", url: "https://bugzilla.suse.com/1115960", }, { category: "self", summary: "SUSE Bug 1148383", url: "https://bugzilla.suse.com/1148383", }, { category: "self", summary: "SUSE Bug 1170657", url: "https://bugzilla.suse.com/1170657", }, { category: "self", summary: "SUSE Bug 1171909", url: "https://bugzilla.suse.com/1171909", }, { category: "self", summary: "SUSE Bug 1172409", url: "https://bugzilla.suse.com/1172409", }, { category: "self", summary: "SUSE Bug 1172450", url: "https://bugzilla.suse.com/1172450", }, { category: "self", summary: "SUSE Bug 1174583", url: "https://bugzilla.suse.com/1174583", }, { category: "self", summary: "SUSE Bug 1178243", url: "https://bugzilla.suse.com/1178243", }, { category: "self", summary: "SUSE Bug 1179805", url: "https://bugzilla.suse.com/1179805", }, { category: "self", summary: "SUSE Bug 1181277", url: "https://bugzilla.suse.com/1181277", }, { category: "self", summary: "SUSE Bug 1181278", url: "https://bugzilla.suse.com/1181278", }, { category: "self", summary: "SUSE Bug 1181689", url: "https://bugzilla.suse.com/1181689", }, { category: "self", summary: "SUSE Bug 1181690", url: "https://bugzilla.suse.com/1181690", }, { category: "self", summary: "SUSE Bug 1182317", url: "https://bugzilla.suse.com/1182317", }, { category: "self", summary: "SUSE Bug 1182433", url: "https://bugzilla.suse.com/1182433", }, { category: "self", summary: "SUSE Bug 1183174", url: "https://bugzilla.suse.com/1183174", }, { category: "self", summary: "SUSE Bug 1183803", url: "https://bugzilla.suse.com/1183803", }, { category: "self", summary: "SUSE Bug 1184148", url: "https://bugzilla.suse.com/1184148", }, { category: "self", summary: "SUSE Bug 1185623", url: "https://bugzilla.suse.com/1185623", }, { category: "self", summary: "SUSE Bug 1186608", url: "https://bugzilla.suse.com/1186608", }, { category: "self", summary: "SUSE Bug 1186611", url: "https://bugzilla.suse.com/1186611", }, { category: "self", summary: "SUSE CVE CVE-2017-11481 page", url: "https://www.suse.com/security/cve/CVE-2017-11481/", }, { category: "self", summary: "SUSE CVE CVE-2017-11499 page", url: "https://www.suse.com/security/cve/CVE-2017-11499/", }, { category: "self", summary: "SUSE CVE CVE-2018-18623 page", url: "https://www.suse.com/security/cve/CVE-2018-18623/", }, { category: "self", summary: "SUSE CVE CVE-2018-18624 page", url: "https://www.suse.com/security/cve/CVE-2018-18624/", }, { category: "self", summary: "SUSE CVE CVE-2018-18625 page", url: "https://www.suse.com/security/cve/CVE-2018-18625/", }, { category: "self", summary: "SUSE CVE CVE-2018-19039 page", url: "https://www.suse.com/security/cve/CVE-2018-19039/", }, { category: "self", summary: "SUSE CVE CVE-2019-15043 page", url: "https://www.suse.com/security/cve/CVE-2019-15043/", }, { category: "self", summary: "SUSE CVE CVE-2019-25025 page", url: "https://www.suse.com/security/cve/CVE-2019-25025/", }, { category: "self", summary: "SUSE CVE CVE-2020-10743 page", url: "https://www.suse.com/security/cve/CVE-2020-10743/", }, { category: "self", summary: "SUSE CVE CVE-2020-11110 page", url: "https://www.suse.com/security/cve/CVE-2020-11110/", }, { category: "self", summary: "SUSE CVE CVE-2020-12052 page", url: "https://www.suse.com/security/cve/CVE-2020-12052/", }, { category: "self", summary: "SUSE CVE CVE-2020-13379 page", url: "https://www.suse.com/security/cve/CVE-2020-13379/", }, { category: "self", summary: "SUSE CVE CVE-2020-17516 page", url: "https://www.suse.com/security/cve/CVE-2020-17516/", }, { category: "self", summary: "SUSE CVE CVE-2020-24303 page", url: "https://www.suse.com/security/cve/CVE-2020-24303/", }, { category: "self", summary: "SUSE CVE CVE-2020-29651 page", url: "https://www.suse.com/security/cve/CVE-2020-29651/", }, { category: "self", summary: "SUSE CVE CVE-2021-21238 page", url: "https://www.suse.com/security/cve/CVE-2021-21238/", }, { category: "self", summary: "SUSE CVE CVE-2021-21239 page", url: "https://www.suse.com/security/cve/CVE-2021-21239/", }, { category: "self", summary: "SUSE CVE CVE-2021-23336 page", url: "https://www.suse.com/security/cve/CVE-2021-23336/", }, { category: "self", summary: "SUSE CVE CVE-2021-27358 page", url: "https://www.suse.com/security/cve/CVE-2021-27358/", }, { category: "self", summary: "SUSE CVE CVE-2021-28658 page", url: "https://www.suse.com/security/cve/CVE-2021-28658/", }, { category: "self", summary: "SUSE CVE CVE-2021-31542 page", url: "https://www.suse.com/security/cve/CVE-2021-31542/", }, { category: "self", summary: "SUSE CVE CVE-2021-33203 page", url: "https://www.suse.com/security/cve/CVE-2021-33203/", }, { category: "self", summary: "SUSE CVE CVE-2021-33571 page", url: "https://www.suse.com/security/cve/CVE-2021-33571/", }, ], title: "Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone", tracking: { current_release_date: "2021-06-11T13:13:53Z", generator: { date: "2021-06-11T13:13:53Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2021:1962-1", initial_release_date: "2021-06-11T13:13:53Z", revision_history: [ { date: "2021-06-11T13:13:53Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "cassandra-3.11.10-3.3.3.aarch64", product: { name: "cassandra-3.11.10-3.3.3.aarch64", product_id: "cassandra-3.11.10-3.3.3.aarch64", }, }, { category: "product_version", name: "cassandra-javadoc-3.11.10-3.3.3.aarch64", product: { name: "cassandra-javadoc-3.11.10-3.3.3.aarch64", product_id: "cassandra-javadoc-3.11.10-3.3.3.aarch64", }, }, { category: "product_version", name: "cassandra-tools-3.11.10-3.3.3.aarch64", product: { name: "cassandra-tools-3.11.10-3.3.3.aarch64", product_id: "cassandra-tools-3.11.10-3.3.3.aarch64", }, }, { category: "product_version", name: "grafana-6.7.4-3.23.2.aarch64", product: { name: "grafana-6.7.4-3.23.2.aarch64", product_id: "grafana-6.7.4-3.23.2.aarch64", }, }, { category: "product_version", name: "kibana-4.6.6-4.9.2.aarch64", product: { name: "kibana-4.6.6-4.9.2.aarch64", product_id: "kibana-4.6.6-4.9.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", product: { name: "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", product_id: "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", }, }, { category: "product_version", name: "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", product: { name: "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", product_id: "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", }, }, { category: "product_version", name: "cassandra-kit-3.11.10-3.3.2.noarch", product: { name: "cassandra-kit-3.11.10-3.3.2.noarch", product_id: "cassandra-kit-3.11.10-3.3.2.noarch", }, }, { category: "product_version", name: "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", product: { name: "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", product_id: "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", }, }, { category: "product_version", name: "openstack-dashboard-14.1.1~dev11-3.24.6.noarch", product: { name: "openstack-dashboard-14.1.1~dev11-3.24.6.noarch", product_id: "openstack-dashboard-14.1.1~dev11-3.24.6.noarch", }, }, { category: "product_version", name: "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch", product: { name: "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch", product_id: "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch", }, }, { category: "product_version", name: "openstack-ironic-11.1.5~dev17-3.25.5.noarch", product: { name: "openstack-ironic-11.1.5~dev17-3.25.5.noarch", product_id: "openstack-ironic-11.1.5~dev17-3.25.5.noarch", }, }, { category: "product_version", name: "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", product: { name: "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", product_id: "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", }, }, { category: "product_version", name: "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", product: { name: "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", product_id: "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", }, }, { category: "product_version", name: "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch", product: { name: "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch", product_id: "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch", }, }, { category: "product_version", name: "openstack-neutron-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", product: { name: "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", product_id: "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch", product: { name: "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch", product_id: "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch", product: { name: "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch", product_id: "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "openstack-nova-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-api-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-api-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-api-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-console-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-console-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-console-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-network-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-network-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-network-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-test-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-test-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-test-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", product: { name: "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", product_id: "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "python-Django1-1.11.29-3.25.1.noarch", product: { name: "python-Django1-1.11.29-3.25.1.noarch", product_id: "python-Django1-1.11.29-3.25.1.noarch", }, }, { category: "product_version", name: "python-elementpath-1.3.1-1.3.2.noarch", product: { name: "python-elementpath-1.3.1-1.3.2.noarch", product_id: "python-elementpath-1.3.1-1.3.2.noarch", }, }, { category: "product_version", name: "python-horizon-14.1.1~dev11-3.24.6.noarch", product: { name: "python-horizon-14.1.1~dev11-3.24.6.noarch", product_id: "python-horizon-14.1.1~dev11-3.24.6.noarch", }, }, { category: "product_version", name: "python-ironic-11.1.5~dev17-3.25.5.noarch", product: { name: "python-ironic-11.1.5~dev17-3.25.5.noarch", product_id: "python-ironic-11.1.5~dev17-3.25.5.noarch", }, }, { category: "product_version", name: "python-neutron-13.0.8~dev164-3.37.4.noarch", product: { name: "python-neutron-13.0.8~dev164-3.37.4.noarch", product_id: "python-neutron-13.0.8~dev164-3.37.4.noarch", }, }, { category: "product_version", name: "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", product: { name: "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", product_id: "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", }, }, { category: "product_version", name: "python-nova-18.3.1~dev82-3.37.6.noarch", product: { name: "python-nova-18.3.1~dev82-3.37.6.noarch", product_id: "python-nova-18.3.1~dev82-3.37.6.noarch", }, }, { category: "product_version", name: "python-openstack_auth-14.1.1~dev11-3.24.6.noarch", product: { name: "python-openstack_auth-14.1.1~dev11-3.24.6.noarch", product_id: "python-openstack_auth-14.1.1~dev11-3.24.6.noarch", }, }, { category: "product_version", name: "python-py-1.5.4-3.3.2.noarch", product: { name: "python-py-1.5.4-3.3.2.noarch", product_id: "python-py-1.5.4-3.3.2.noarch", }, }, { category: "product_version", name: "python-pysaml2-4.5.0-4.6.2.noarch", product: { name: "python-pysaml2-4.5.0-4.6.2.noarch", product_id: "python-pysaml2-4.5.0-4.6.2.noarch", }, }, { category: "product_version", name: "python-xmlschema-1.0.18-1.3.2.noarch", product: { name: "python-xmlschema-1.0.18-1.3.2.noarch", product_id: "python-xmlschema-1.0.18-1.3.2.noarch", }, }, { category: "product_version", name: "python3-Django1-1.11.29-3.25.1.noarch", product: { name: "python3-Django1-1.11.29-3.25.1.noarch", product_id: "python3-Django1-1.11.29-3.25.1.noarch", }, }, { category: "product_version", name: "python3-elementpath-1.3.1-1.3.2.noarch", product: { name: "python3-elementpath-1.3.1-1.3.2.noarch", product_id: "python3-elementpath-1.3.1-1.3.2.noarch", }, }, { category: "product_version", name: "python3-py-1.5.4-3.3.2.noarch", product: { name: "python3-py-1.5.4-3.3.2.noarch", product_id: "python3-py-1.5.4-3.3.2.noarch", }, }, { category: "product_version", name: "python3-pysaml2-4.5.0-4.6.2.noarch", product: { name: "python3-pysaml2-4.5.0-4.6.2.noarch", product_id: "python3-pysaml2-4.5.0-4.6.2.noarch", }, }, { category: "product_version", name: "python3-xmlschema-1.0.18-1.3.2.noarch", product: { name: "python3-xmlschema-1.0.18-1.3.2.noarch", product_id: "python3-xmlschema-1.0.18-1.3.2.noarch", }, }, { category: "product_version", name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", product: { name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", product_id: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", }, }, { category: "product_version", name: "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", product: { name: "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", product_id: "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", }, }, { category: "product_version", name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", product: { name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", product_id: "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", }, }, { category: "product_version", name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", product: { name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", product_id: "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", }, }, { category: "product_version", name: "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", product: { name: "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", product_id: "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", }, }, { category: "product_version", name: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", product: { name: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", product_id: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", }, }, { category: "product_version", name: "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", product: { name: "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", product_id: "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", }, }, { category: "product_version", name: "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch", product: { name: "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch", product_id: "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch", }, }, { category: "product_version", name: "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch", product: { name: "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch", product_id: "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch", }, }, { category: "product_version", name: "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch", product: { name: "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch", product_id: "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch", }, }, { category: "product_version", name: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", product: { name: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", product_id: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", }, }, { category: "product_version", name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", product: { name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", product_id: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", }, }, { category: "product_version", name: "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", product: { name: "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", product_id: "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", product: { name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", product_id: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", product: { name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", product_id: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", }, }, { category: "product_version", name: "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", product: { name: "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", product_id: "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", }, }, { category: "product_version", name: "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", product: { name: "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", product_id: "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", }, }, { category: "product_version", name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", product: { name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", product_id: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", }, }, { category: "product_version", name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", product: { name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", product_id: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", }, }, { category: "product_version", name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", product: { name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", product_id: "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "cassandra-3.11.10-3.3.3.ppc64le", product: { name: "cassandra-3.11.10-3.3.3.ppc64le", product_id: "cassandra-3.11.10-3.3.3.ppc64le", }, }, { category: "product_version", name: "cassandra-javadoc-3.11.10-3.3.3.ppc64le", product: { name: "cassandra-javadoc-3.11.10-3.3.3.ppc64le", product_id: "cassandra-javadoc-3.11.10-3.3.3.ppc64le", }, }, { category: "product_version", name: "cassandra-tools-3.11.10-3.3.3.ppc64le", product: { name: "cassandra-tools-3.11.10-3.3.3.ppc64le", product_id: "cassandra-tools-3.11.10-3.3.3.ppc64le", }, }, { category: "product_version", name: "grafana-6.7.4-3.23.2.ppc64le", product: { name: "grafana-6.7.4-3.23.2.ppc64le", product_id: "grafana-6.7.4-3.23.2.ppc64le", }, }, { category: "product_version", name: "kibana-4.6.6-4.9.2.ppc64le", product: { name: "kibana-4.6.6-4.9.2.ppc64le", product_id: "kibana-4.6.6-4.9.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "grafana-6.7.4-3.23.2.s390x", product: { name: "grafana-6.7.4-3.23.2.s390x", product_id: "grafana-6.7.4-3.23.2.s390x", }, }, { category: "product_version", name: "kibana-4.6.6-4.9.2.s390x", product: { name: "kibana-4.6.6-4.9.2.s390x", product_id: "kibana-4.6.6-4.9.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "cassandra-3.11.10-3.3.3.x86_64", product: { name: "cassandra-3.11.10-3.3.3.x86_64", product_id: "cassandra-3.11.10-3.3.3.x86_64", }, }, { category: "product_version", name: "cassandra-javadoc-3.11.10-3.3.3.x86_64", product: { name: "cassandra-javadoc-3.11.10-3.3.3.x86_64", product_id: "cassandra-javadoc-3.11.10-3.3.3.x86_64", }, }, { category: "product_version", name: "cassandra-tools-3.11.10-3.3.3.x86_64", product: { name: "cassandra-tools-3.11.10-3.3.3.x86_64", product_id: "cassandra-tools-3.11.10-3.3.3.x86_64", }, }, { category: "product_version", name: "grafana-6.7.4-3.23.2.x86_64", product: { name: "grafana-6.7.4-3.23.2.x86_64", product_id: "grafana-6.7.4-3.23.2.x86_64", }, }, { category: "product_version", name: "kibana-4.6.6-4.9.2.x86_64", product: { name: "kibana-4.6.6-4.9.2.x86_64", product_id: "kibana-4.6.6-4.9.2.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", product: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", product_id: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64", product: { name: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64", product_id: "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 9", product: { name: "SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:9", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud Crowbar 9", product: { name: "SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud-crowbar:9", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", }, product_reference: "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", }, product_reference: "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "cassandra-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", }, product_reference: "cassandra-3.11.10-3.3.3.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "cassandra-tools-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", }, product_reference: "cassandra-tools-3.11.10-3.3.3.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-3.23.2.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", }, product_reference: "grafana-6.7.4-3.23.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.6-4.9.2.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", }, product_reference: "kibana-4.6.6-4.9.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-dashboard-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", }, product_reference: "openstack-dashboard-14.1.1~dev11-3.24.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", }, product_reference: "openstack-ironic-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", }, product_reference: "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", }, product_reference: "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", }, product_reference: "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-api-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-console-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-Django1-1.11.29-3.25.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", }, product_reference: "python-Django1-1.11.29-3.25.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", }, product_reference: "python-elementpath-1.3.1-1.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-horizon-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", }, product_reference: "python-horizon-14.1.1~dev11-3.24.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", }, product_reference: "python-ironic-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", }, product_reference: "python-neutron-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", }, product_reference: "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", }, product_reference: "python-nova-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-openstack_auth-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", }, product_reference: "python-openstack_auth-14.1.1~dev11-3.24.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-py-1.5.4-3.3.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", }, product_reference: "python-py-1.5.4-3.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-pysaml2-4.5.0-4.6.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", }, product_reference: "python-pysaml2-4.5.0-4.6.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-xmlschema-1.0.18-1.3.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", }, product_reference: "python-xmlschema-1.0.18-1.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", }, product_reference: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", }, product_reference: "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", }, product_reference: "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", }, product_reference: "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", }, product_reference: "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", }, product_reference: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", }, product_reference: "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", }, product_reference: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", }, product_reference: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", }, product_reference: "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", }, product_reference: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", }, product_reference: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", }, product_reference: "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", }, product_reference: "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", }, product_reference: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", }, product_reference: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", }, product_reference: "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "cassandra-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", }, product_reference: "cassandra-3.11.10-3.3.3.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "cassandra-tools-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", }, product_reference: "cassandra-tools-3.11.10-3.3.3.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", }, product_reference: "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-3.23.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", }, product_reference: "grafana-6.7.4-3.23.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.6-4.9.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", }, product_reference: "kibana-4.6.6-4.9.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-dashboard-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", }, product_reference: "openstack-dashboard-14.1.1~dev11-3.24.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", }, product_reference: "openstack-ironic-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", }, product_reference: "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", }, product_reference: "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", }, product_reference: "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", }, product_reference: "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-api-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-console-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", }, product_reference: "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-Django1-1.11.29-3.25.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", }, product_reference: "python-Django1-1.11.29-3.25.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", }, product_reference: "python-elementpath-1.3.1-1.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-horizon-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", }, product_reference: "python-horizon-14.1.1~dev11-3.24.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", }, product_reference: "python-ironic-11.1.5~dev17-3.25.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", }, product_reference: "python-neutron-13.0.8~dev164-3.37.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", }, product_reference: "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", }, product_reference: "python-nova-18.3.1~dev82-3.37.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-openstack_auth-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", }, product_reference: "python-openstack_auth-14.1.1~dev11-3.24.6.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-py-1.5.4-3.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", }, product_reference: "python-py-1.5.4-3.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-pysaml2-4.5.0-4.6.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", }, product_reference: "python-pysaml2-4.5.0-4.6.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-xmlschema-1.0.18-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", }, product_reference: "python-xmlschema-1.0.18-1.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", }, product_reference: "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, ], }, vulnerabilities: [ { cve: "CVE-2017-11481", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-11481", }, ], notes: [ { category: "general", text: "Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-11481", url: "https://www.suse.com/security/cve/CVE-2017-11481", }, { category: "external", summary: "SUSE Bug 1044849 for CVE-2017-11481", url: "https://bugzilla.suse.com/1044849", }, { category: "external", summary: "SUSE Bug 1072315 for CVE-2017-11481", url: "https://bugzilla.suse.com/1072315", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2017-11481", }, { cve: "CVE-2017-11499", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-11499", }, ], notes: [ { category: "general", text: "Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building with V8 snapshots enabled by default which caused the initially randomized seed to be overwritten on startup.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-11499", url: "https://www.suse.com/security/cve/CVE-2017-11499", }, { category: "external", summary: "SUSE Bug 1044849 for CVE-2017-11499", url: "https://bugzilla.suse.com/1044849", }, { category: "external", summary: "SUSE Bug 1048299 for CVE-2017-11499", url: "https://bugzilla.suse.com/1048299", }, { category: "external", summary: "SUSE Bug 1051117 for CVE-2017-11499", url: "https://bugzilla.suse.com/1051117", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "important", }, ], title: "CVE-2017-11499", }, { cve: "CVE-2018-18623", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-18623", }, ], notes: [ { category: "general", text: "Grafana 5.3.1 has XSS via the \"Dashboard > Text Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-18623", url: "https://www.suse.com/security/cve/CVE-2018-18623", }, { category: "external", summary: "SUSE Bug 1172450 for CVE-2018-18623", url: "https://bugzilla.suse.com/1172450", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2018-18623", url: "https://bugzilla.suse.com/1174583", }, { category: "external", summary: "SUSE Bug 1175951 for CVE-2018-18623", url: "https://bugzilla.suse.com/1175951", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2018-18623", }, { cve: "CVE-2018-18624", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-18624", }, ], notes: [ { category: "general", text: "Grafana 5.3.1 has XSS via a column style on the \"Dashboard > Table Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-18624", url: "https://www.suse.com/security/cve/CVE-2018-18624", }, { category: "external", summary: "SUSE Bug 1172450 for CVE-2018-18624", url: "https://bugzilla.suse.com/1172450", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2018-18624", url: "https://bugzilla.suse.com/1174583", }, { category: "external", summary: "SUSE Bug 1175951 for CVE-2018-18624", url: "https://bugzilla.suse.com/1175951", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2018-18624", }, { cve: "CVE-2018-18625", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-18625", }, ], notes: [ { category: "general", text: "Grafana 5.3.1 has XSS via a link on the \"Dashboard > All Panels > General\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-18625", url: "https://www.suse.com/security/cve/CVE-2018-18625", }, { category: "external", summary: "SUSE Bug 1172450 for CVE-2018-18625", url: "https://bugzilla.suse.com/1172450", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2018-18625", url: "https://bugzilla.suse.com/1174583", }, { category: "external", summary: "SUSE Bug 1175951 for CVE-2018-18625", url: "https://bugzilla.suse.com/1175951", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2018-18625", }, { cve: "CVE-2018-19039", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-19039", }, ], notes: [ { category: "general", text: "Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-19039", url: "https://www.suse.com/security/cve/CVE-2018-19039", }, { category: "external", summary: "SUSE Bug 1115960 for CVE-2018-19039", url: "https://bugzilla.suse.com/1115960", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2018-19039", }, { cve: "CVE-2019-15043", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-15043", }, ], notes: [ { category: "general", text: "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-15043", url: "https://www.suse.com/security/cve/CVE-2019-15043", }, { category: "external", summary: "SUSE Bug 1148383 for CVE-2019-15043", url: "https://bugzilla.suse.com/1148383", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "important", }, ], title: "CVE-2019-15043", }, { cve: "CVE-2019-25025", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-25025", }, ], notes: [ { category: "general", text: "The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepancies to achieve a correct guess in a relatively short amount of time. This is a related issue to CVE-2019-16782.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-25025", url: "https://www.suse.com/security/cve/CVE-2019-25025", }, { category: "external", summary: "SUSE Bug 1159548 for CVE-2019-25025", url: "https://bugzilla.suse.com/1159548", }, { category: "external", summary: "SUSE Bug 1183174 for CVE-2019-25025", url: "https://bugzilla.suse.com/1183174", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2019-25025", }, { cve: "CVE-2020-10743", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10743", }, ], notes: [ { category: "general", text: "It was discovered that OpenShift Container Platform's (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. This flaw allows an attacker to trick a user into performing arbitrary actions in OCP's distribution of Kibana, such as clickjacking.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10743", url: "https://www.suse.com/security/cve/CVE-2020-10743", }, { category: "external", summary: "SUSE Bug 1171909 for CVE-2020-10743", url: "https://bugzilla.suse.com/1171909", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.9, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "low", }, ], title: "CVE-2020-10743", }, { cve: "CVE-2020-11110", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11110", }, ], notes: [ { category: "general", text: "Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11110", url: "https://www.suse.com/security/cve/CVE-2020-11110", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2020-11110", url: "https://bugzilla.suse.com/1174583", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2020-11110", }, { cve: "CVE-2020-12052", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-12052", }, ], notes: [ { category: "general", text: "Grafana version < 6.7.3 is vulnerable for annotation popup XSS.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-12052", url: "https://www.suse.com/security/cve/CVE-2020-12052", }, { category: "external", summary: "SUSE Bug 1170657 for CVE-2020-12052", url: "https://bugzilla.suse.com/1170657", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2020-12052", }, { cve: "CVE-2020-13379", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-13379", }, ], notes: [ { category: "general", text: "The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information about the network that Grafana is running on. Furthermore, passing invalid URL objects could be used for DOS'ing Grafana via SegFault.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-13379", url: "https://www.suse.com/security/cve/CVE-2020-13379", }, { category: "external", summary: "SUSE Bug 1172409 for CVE-2020-13379", url: "https://bugzilla.suse.com/1172409", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "important", }, ], title: "CVE-2020-13379", }, { cve: "CVE-2020-17516", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-17516", }, ], notes: [ { category: "general", text: "Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc' or 'rack' internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted connection despite not being in the same rack or dc, and bypass mutual TLS requirement.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-17516", url: "https://www.suse.com/security/cve/CVE-2020-17516", }, { category: "external", summary: "SUSE Bug 1181689 for CVE-2020-17516", url: "https://bugzilla.suse.com/1181689", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2020-17516", }, { cve: "CVE-2020-24303", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-24303", }, ], notes: [ { category: "general", text: "Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-24303", url: "https://www.suse.com/security/cve/CVE-2020-24303", }, { category: "external", summary: "SUSE Bug 1178243 for CVE-2020-24303", url: "https://bugzilla.suse.com/1178243", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2020-24303", }, { cve: "CVE-2020-29651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-29651", }, ], notes: [ { category: "general", text: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-29651", url: "https://www.suse.com/security/cve/CVE-2020-29651", }, { category: "external", summary: "SUSE Bug 1179805 for CVE-2020-29651", url: "https://bugzilla.suse.com/1179805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2020-29651", }, { cve: "CVE-2021-21238", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-21238", }, ], notes: [ { category: "general", text: "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping because it did not validate the SAML document against an XML schema. This allowed invalid XML documents to be processed and such a document can trick pysaml2 with a wrapped signature. This is fixed in PySAML2 6.5.0.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-21238", url: "https://www.suse.com/security/cve/CVE-2021-21238", }, { category: "external", summary: "SUSE Bug 1181277 for CVE-2021-21238", url: "https://bugzilla.suse.com/1181277", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2021-21238", }, { cve: "CVE-2021-21239", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-21239", }, ], notes: [ { category: "general", text: "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-21239", url: "https://www.suse.com/security/cve/CVE-2021-21239", }, { category: "external", summary: "SUSE Bug 1181278 for CVE-2021-21239", url: "https://bugzilla.suse.com/1181278", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2021-21239", }, { cve: "CVE-2021-23336", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-23336", }, ], notes: [ { category: "general", text: "The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-23336", url: "https://www.suse.com/security/cve/CVE-2021-23336", }, { category: "external", summary: "SUSE Bug 1182179 for CVE-2021-23336", url: "https://bugzilla.suse.com/1182179", }, { category: "external", summary: "SUSE Bug 1182379 for CVE-2021-23336", url: "https://bugzilla.suse.com/1182379", }, { category: "external", summary: "SUSE Bug 1182433 for CVE-2021-23336", url: "https://bugzilla.suse.com/1182433", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2021-23336", }, { cve: "CVE-2021-27358", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27358", }, ], notes: [ { category: "general", text: "The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27358", url: "https://www.suse.com/security/cve/CVE-2021-27358", }, { category: "external", summary: "SUSE Bug 1183803 for CVE-2021-27358", url: "https://bugzilla.suse.com/1183803", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "important", }, ], title: "CVE-2021-27358", }, { cve: "CVE-2021-28658", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-28658", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-28658", url: "https://www.suse.com/security/cve/CVE-2021-28658", }, { category: "external", summary: "SUSE Bug 1184148 for CVE-2021-28658", url: "https://bugzilla.suse.com/1184148", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "low", }, ], title: "CVE-2021-28658", }, { cve: "CVE-2021-31542", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-31542", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-31542", url: "https://www.suse.com/security/cve/CVE-2021-31542", }, { category: "external", summary: "SUSE Bug 1185623 for CVE-2021-31542", url: "https://bugzilla.suse.com/1185623", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2021-31542", }, { cve: "CVE-2021-33203", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33203", }, ], notes: [ { category: "general", text: "Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs templates have been customized by application developers to also show file contents, then not only the existence but also the file contents would have been exposed. In other words, there is directory traversal outside of the template root directories.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33203", url: "https://www.suse.com/security/cve/CVE-2021-33203", }, { category: "external", summary: "SUSE Bug 1186608 for CVE-2021-33203", url: "https://bugzilla.suse.com/1186608", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "moderate", }, ], title: "CVE-2021-33203", }, { cve: "CVE-2021-33571", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33571", }, ], notes: [ { category: "general", text: "In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4_address and validate_ipv46_address are unaffected with Python 3.9.5+..) .", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33571", url: "https://www.suse.com/security/cve/CVE-2021-33571", }, { category: "external", summary: "SUSE Bug 1186611 for CVE-2021-33571", url: "https://bugzilla.suse.com/1186611", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch", "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch", "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch", "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch", "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2021-06-11T13:13:53Z", details: "important", }, ], title: "CVE-2021-33571", }, ], }
gsd-2020-29651
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.
Aliases
Aliases
{ GSD: { alias: "CVE-2020-29651", description: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", id: "GSD-2020-29651", references: [ "https://www.suse.com/security/cve/CVE-2020-29651.html", "https://ubuntu.com/security/CVE-2020-29651", "https://advisories.mageia.org/CVE-2020-29651.html", "https://security.archlinux.org/CVE-2020-29651", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2020-29651", ], details: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", id: "GSD-2020-29651", modified: "2023-12-13T01:22:11.816190Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-29651", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/pytest-dev/py/issues/256", refsource: "MISC", url: "https://github.com/pytest-dev/py/issues/256", }, { name: "https://github.com/pytest-dev/py/pull/257", refsource: "MISC", url: "https://github.com/pytest-dev/py/pull/257", }, { name: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", refsource: "MISC", url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { name: "FEDORA-2020-db0eb54982", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { name: "FEDORA-2020-8371993b6b", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { name: "https://www.oracle.com/security-alerts/cpujul2022.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "<=1.9.0", affected_versions: "All versions up to 1.9.0", cvss_v2: "AV:N/AC:L/Au:N/C:N/I:N/A:P", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-937", ], date: "2021-01-05", description: "A denial of service via regular expression in the `py.path.svnwc` component of py (aka python-py) could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", fixed_versions: [ "1.10.0", ], identifier: "CVE-2020-29651", identifiers: [ "CVE-2020-29651", ], not_impacted: "All versions after 1.9.0", package_slug: "pypi/py", pubdate: "2020-12-09", solution: "Upgrade to version 1.10.0 or above.", title: "Uncontrolled Resource Consumption", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2020-29651", ], uuid: "b261be86-c801-45fa-8477-bc4fdbd496ea", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:pytest:py:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "1.9.0", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-29651", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", refsource: "MISC", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { name: "https://github.com/pytest-dev/py/issues/256", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/issues/256", }, { name: "https://github.com/pytest-dev/py/pull/257", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/pull/257", }, { name: "FEDORA-2020-db0eb54982", refsource: "FEDORA", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { name: "FEDORA-2020-8371993b6b", refsource: "FEDORA", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { name: "N/A", refsource: "N/A", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 3.6, }, }, lastModifiedDate: "2022-10-12T17:08Z", publishedDate: "2020-12-09T07:15Z", }, }, }
WID-SEC-W-2022-1335
Vulnerability from csaf_certbund
Published
2022-09-07 22:00
Modified
2023-05-18 22:00
Summary
Xerox FreeFlow Print Server: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.
Betroffene Betriebssysteme
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", title: "Angriff", }, { category: "general", text: "- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-1335 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1335.json", }, { category: "self", summary: "WID-SEC-2022-1335 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1335", }, { category: "external", summary: "XEROX Security Advisory XRX23-007 vom 2023-05-18", url: "https://security.business.xerox.com/wp-content/uploads/2023/05/Xerox-Security-Bulletin-XRX23-007-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v7.pdf", }, { category: "external", summary: "XEROX Security Advisory XRX23-005 vom 2023-04-04", url: "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-021 vom 2022-09-07", url: "https://securitydocs.business.xerox.com/wp-content/uploads/2022/09/Xerox-Security-Bulletin-XRX22-021-FreeFlow-Print-Server-v9.pdf", }, ], source_lang: "en-US", title: "Xerox FreeFlow Print Server: Mehrere Schwachstellen", tracking: { current_release_date: "2023-05-18T22:00:00.000+00:00", generator: { date: "2024-08-15T17:34:44.234+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-1335", initial_release_date: "2022-09-07T22:00:00.000+00:00", revision_history: [ { date: "2022-09-07T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-04-03T22:00:00.000+00:00", number: "2", summary: "Neue Updates von XEROX aufgenommen", }, { date: "2023-05-18T22:00:00.000+00:00", number: "3", summary: "Neue Updates von XEROX aufgenommen", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Xerox FreeFlow Print Server 7", product: { name: "Xerox FreeFlow Print Server 7", product_id: "T000872", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:7", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server 9", product: { name: "Xerox FreeFlow Print Server 9", product_id: "T002977", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:9", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server v9", product: { name: "Xerox FreeFlow Print Server v9", product_id: "T015632", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:v9", }, }, }, ], category: "product_name", name: "FreeFlow Print Server", }, ], category: "vendor", name: "Xerox", }, ], }, vulnerabilities: [ { cve: "CVE-2018-25032", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2018-25032", }, { cve: "CVE-2019-19906", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2019-19906", }, { cve: "CVE-2020-0499", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2020-0499", }, { cve: "CVE-2020-25717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2020-25717", }, { cve: "CVE-2020-29651", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2020-29651", }, { cve: "CVE-2021-0561", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-0561", }, { cve: "CVE-2021-21708", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-21708", }, { cve: "CVE-2021-22946", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-22946", }, { cve: "CVE-2021-25220", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-25220", }, { cve: "CVE-2021-29923", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-29923", }, { cve: "CVE-2021-30809", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30809", }, { cve: "CVE-2021-30818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30818", }, { cve: "CVE-2021-30823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30823", }, { cve: "CVE-2021-30836", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30836", }, { cve: "CVE-2021-30884", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30884", }, { cve: "CVE-2021-30887", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30887", }, { cve: "CVE-2021-30888", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30888", }, { cve: "CVE-2021-30889", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30889", }, { cve: "CVE-2021-30890", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30890", }, { cve: "CVE-2021-30897", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30897", }, { cve: "CVE-2021-30934", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30934", }, { cve: "CVE-2021-30936", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30936", }, { cve: "CVE-2021-30951", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30951", }, { cve: "CVE-2021-30952", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30952", }, { cve: "CVE-2021-30953", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30953", }, { cve: "CVE-2021-30954", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30954", }, { cve: "CVE-2021-30984", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30984", }, { cve: "CVE-2021-3448", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-3448", }, { cve: "CVE-2021-34558", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-34558", }, { cve: "CVE-2021-36221", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-36221", }, { cve: "CVE-2021-4115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4115", }, { cve: "CVE-2021-4136", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4136", }, { cve: "CVE-2021-4166", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4166", }, { cve: "CVE-2021-4173", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4173", }, { cve: "CVE-2021-41771", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-41771", }, { cve: "CVE-2021-41772", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-41772", }, { cve: "CVE-2021-4187", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4187", }, { cve: "CVE-2021-4192", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4192", }, { cve: "CVE-2021-4193", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4193", }, { cve: "CVE-2021-4217", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4217", }, { cve: "CVE-2021-43519", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-43519", }, { cve: "CVE-2021-43566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-43566", }, { cve: "CVE-2021-44142", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-44142", }, { cve: "CVE-2021-45444", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45444", }, { cve: "CVE-2021-45481", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45481", }, { cve: "CVE-2021-45482", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45482", }, { cve: "CVE-2021-45483", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45483", }, { cve: "CVE-2021-45960", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45960", }, { cve: "CVE-2021-46143", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-46143", }, { cve: "CVE-2022-0128", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0128", }, { cve: "CVE-2022-0156", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0156", }, { cve: "CVE-2022-0158", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0158", }, { cve: "CVE-2022-0261", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0261", }, { cve: "CVE-2022-0318", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0318", }, { cve: "CVE-2022-0319", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0319", }, { cve: "CVE-2022-0336", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0336", }, { cve: "CVE-2022-0391", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0391", }, { cve: "CVE-2022-0408", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0408", }, { cve: "CVE-2022-0413", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0413", }, { cve: "CVE-2022-0417", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0417", }, { cve: "CVE-2022-0443", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0443", }, { cve: "CVE-2022-0554", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0554", }, { cve: "CVE-2022-0566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0566", }, { cve: "CVE-2022-0572", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0572", }, { cve: "CVE-2022-0629", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0629", }, { cve: "CVE-2022-0685", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0685", }, { cve: "CVE-2022-0696", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0696", }, { cve: "CVE-2022-0714", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0714", }, { cve: "CVE-2022-0729", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0729", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-1097", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1097", }, { cve: "CVE-2022-1196", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1196", }, { cve: "CVE-2022-1197", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1197", }, { cve: "CVE-2022-1271", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1271", }, { cve: "CVE-2022-1520", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1520", }, { cve: "CVE-2022-1834", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1834", }, { cve: "CVE-2022-21245", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21245", }, { cve: "CVE-2022-21270", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21270", }, { cve: "CVE-2022-21291", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21291", }, { cve: "CVE-2022-21303", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21303", }, { cve: "CVE-2022-21304", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21304", }, { cve: "CVE-2022-21344", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21344", }, { cve: "CVE-2022-21349", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21349", }, { cve: "CVE-2022-21367", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21367", }, { cve: "CVE-2022-21426", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21426", }, { cve: "CVE-2022-21434", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21434", }, { cve: "CVE-2022-21443", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21443", }, { cve: "CVE-2022-21449", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21449", }, { cve: "CVE-2022-21476", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21476", }, { cve: "CVE-2022-21493", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21493", }, { cve: "CVE-2022-21494", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21494", }, { cve: "CVE-2022-21496", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21496", }, { cve: "CVE-2022-21514", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21514", }, { cve: "CVE-2022-21524", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21524", }, { cve: "CVE-2022-21533", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21533", }, { cve: "CVE-2022-21712", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21712", }, { cve: "CVE-2022-21716", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21716", }, { cve: "CVE-2022-22589", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22589", }, { cve: "CVE-2022-22590", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22590", }, { cve: "CVE-2022-22592", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22592", }, { cve: "CVE-2022-22620", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22620", }, { cve: "CVE-2022-22719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22719", }, { cve: "CVE-2022-22720", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22720", }, { cve: "CVE-2022-22721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22721", }, { cve: "CVE-2022-22818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22818", }, { cve: "CVE-2022-22822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22822", }, { cve: "CVE-2022-22823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22823", }, { cve: "CVE-2022-22824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22824", }, { cve: "CVE-2022-22825", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22825", }, { cve: "CVE-2022-22826", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22826", }, { cve: "CVE-2022-22827", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22827", }, { cve: "CVE-2022-23308", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23308", }, { cve: "CVE-2022-23772", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23772", }, { cve: "CVE-2022-23773", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23773", }, { cve: "CVE-2022-23806", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23806", }, { cve: "CVE-2022-23833", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23833", }, { cve: "CVE-2022-23852", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23852", }, { cve: "CVE-2022-23943", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23943", }, { cve: "CVE-2022-23990", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23990", }, { cve: "CVE-2022-24130", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24130", }, { cve: "CVE-2022-24407", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24407", }, { cve: "CVE-2022-24675", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24675", }, { cve: "CVE-2022-24713", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24713", }, { cve: "CVE-2022-24801", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24801", }, { cve: "CVE-2022-25235", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25235", }, { cve: "CVE-2022-25236", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25236", }, { cve: "CVE-2022-25313", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25313", }, { cve: "CVE-2022-25314", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25314", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-25762", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25762", }, { cve: "CVE-2022-26381", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26381", }, { cve: "CVE-2022-26383", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26383", }, { cve: "CVE-2022-26384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26384", }, { cve: "CVE-2022-26386", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26386", }, { cve: "CVE-2022-26387", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26387", }, { cve: "CVE-2022-26485", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26485", }, { cve: "CVE-2022-26486", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26486", }, { cve: "CVE-2022-28281", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28281", }, { cve: "CVE-2022-28282", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28282", }, { cve: "CVE-2022-28285", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28285", }, { cve: "CVE-2022-28286", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28286", }, { cve: "CVE-2022-28289", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28289", }, { cve: "CVE-2022-28327", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28327", }, { cve: "CVE-2022-28346", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28346", }, { cve: "CVE-2022-28347", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28347", }, { cve: "CVE-2022-29824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29824", }, { cve: "CVE-2022-29909", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29909", }, { cve: "CVE-2022-29911", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29911", }, { cve: "CVE-2022-29912", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29912", }, { cve: "CVE-2022-29913", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29913", }, { cve: "CVE-2022-29914", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29914", }, { cve: "CVE-2022-29916", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29916", }, { cve: "CVE-2022-29917", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29917", }, { cve: "CVE-2022-31736", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31736", }, { cve: "CVE-2022-31737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31737", }, { cve: "CVE-2022-31738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31738", }, { cve: "CVE-2022-31739", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31739", }, { cve: "CVE-2022-3174", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-3174", }, { cve: "CVE-2022-31740", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31740", }, { cve: "CVE-2022-31741", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31741", }, { cve: "CVE-2022-31742", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31742", }, { cve: "CVE-2022-31747", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31747", }, { cve: "CVE-2022-4187", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-4187", }, ], }
WID-SEC-W-2024-0794
Vulnerability from csaf_certbund
Published
2024-04-04 22:00
Modified
2024-11-27 23:00
Summary
Dell ECS: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Dell ECS ist ein Objektspeichersystem.
Angriff
Ein Angreifer kann mehrere Schwachstellen in Dell ECS ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.
Betroffene Betriebssysteme
- Linux
- UNIX
- Windows
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Dell ECS ist ein Objektspeichersystem.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein Angreifer kann mehrere Schwachstellen in Dell ECS ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", title: "Angriff", }, { category: "general", text: "- Linux\n- UNIX\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0794 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0794.json", }, { category: "self", summary: "WID-SEC-2024-0794 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0794", }, { category: "external", summary: "Dell Security Advisory DSA-2024-141 vom 2024-04-04", url: "https://www.dell.com/support/kbdoc/000223839/dsa-2024-=", }, ], source_lang: "en-US", title: "Dell ECS: Mehrere Schwachstellen", tracking: { current_release_date: "2024-11-27T23:00:00.000+00:00", generator: { date: "2024-11-28T11:39:04.623+00:00", engine: { name: "BSI-WID", version: "1.3.8", }, }, id: "WID-SEC-W-2024-0794", initial_release_date: "2024-04-04T22:00:00.000+00:00", revision_history: [ { date: "2024-04-04T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2024-11-27T23:00:00.000+00:00", number: "2", summary: "Produktzuordnung überprüft", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<3.8.1.0", product: { name: "Dell ECS <3.8.1.0", product_id: "T033919", }, }, { category: "product_version", name: "3.8.1.0", product: { name: "Dell ECS 3.8.1.0", product_id: "T033919-fixed", product_identification_helper: { cpe: "cpe:/h:dell:ecs:3.8.1.0", }, }, }, ], category: "product_name", name: "ECS", }, ], category: "vendor", name: "Dell", }, ], }, vulnerabilities: [ { cve: "CVE-2018-18074", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2018-18074", }, { cve: "CVE-2020-10663", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10663", }, { cve: "CVE-2020-10672", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10672", }, { cve: "CVE-2020-10673", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10673", }, { cve: "CVE-2020-10735", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10735", }, { cve: "CVE-2020-10968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10968", }, { cve: "CVE-2020-10969", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10969", }, { cve: "CVE-2020-11111", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11111", }, { cve: "CVE-2020-11112", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11112", }, { cve: "CVE-2020-11113", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11113", }, { cve: "CVE-2020-11612", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11612", }, { cve: "CVE-2020-11619", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11619", }, { cve: "CVE-2020-11620", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11620", }, { cve: "CVE-2020-11979", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11979", }, { cve: "CVE-2020-12762", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-12762", }, { cve: "CVE-2020-12825", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-12825", }, { cve: "CVE-2020-13956", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-13956", }, { cve: "CVE-2020-14060", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14060", }, { cve: "CVE-2020-14061", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14061", }, { cve: "CVE-2020-14062", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14062", }, { cve: "CVE-2020-14195", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14195", }, { cve: "CVE-2020-15250", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-15250", }, { cve: "CVE-2020-1945", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-1945", }, { cve: "CVE-2020-1967", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-1967", }, { cve: "CVE-2020-1971", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-1971", }, { cve: "CVE-2020-24616", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-24616", }, { cve: "CVE-2020-24750", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-24750", }, { cve: "CVE-2020-25649", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-25649", }, { cve: "CVE-2020-25658", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-25658", }, { cve: "CVE-2020-26116", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-26116", }, { cve: "CVE-2020-26137", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-26137", }, { cve: "CVE-2020-26541", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-26541", }, { cve: "CVE-2020-27216", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-27216", }, { cve: "CVE-2020-27218", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-27218", }, { cve: "CVE-2020-27223", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-27223", }, { cve: "CVE-2020-28366", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-28366", }, { cve: "CVE-2020-28493", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-28493", }, { cve: "CVE-2020-29509", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29509", }, { cve: "CVE-2020-29511", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29511", }, { cve: "CVE-2020-29582", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29582", }, { cve: "CVE-2020-29651", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29651", }, { cve: "CVE-2020-35490", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-35490", }, { cve: "CVE-2020-35491", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-35491", }, { cve: "CVE-2020-35728", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-35728", }, { cve: "CVE-2020-36179", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36179", }, { cve: "CVE-2020-36180", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36180", }, { cve: "CVE-2020-36181", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36181", }, { cve: "CVE-2020-36182", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36182", }, { cve: "CVE-2020-36183", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36183", }, { cve: "CVE-2020-36184", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36184", }, { cve: "CVE-2020-36185", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36185", }, { cve: "CVE-2020-36186", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36186", }, { cve: "CVE-2020-36187", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36187", }, { cve: "CVE-2020-36188", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36188", }, { cve: "CVE-2020-36189", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36189", }, { cve: "CVE-2020-36516", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36516", }, { cve: "CVE-2020-36518", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36518", }, { cve: "CVE-2020-36557", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36557", }, { cve: "CVE-2020-36558", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36558", }, { cve: "CVE-2020-36691", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36691", }, { cve: "CVE-2020-7238", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-7238", }, { cve: "CVE-2020-8840", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8840", }, { cve: "CVE-2020-8908", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8908", }, { cve: "CVE-2020-8911", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8911", }, { cve: "CVE-2020-8912", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8912", }, { cve: "CVE-2020-9488", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9488", }, { cve: "CVE-2020-9493", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9493", }, { cve: "CVE-2020-9546", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9546", }, { cve: "CVE-2020-9547", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9547", }, { cve: "CVE-2020-9548", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9548", }, { cve: "CVE-2021-20190", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-20190", }, { cve: "CVE-2021-20323", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-20323", }, { cve: "CVE-2021-21290", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-21290", }, { cve: "CVE-2021-21295", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-21295", }, { cve: "CVE-2021-21409", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-21409", }, { cve: "CVE-2021-23840", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-23840", }, { cve: "CVE-2021-23841", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-23841", }, { cve: "CVE-2021-2471", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-2471", }, { cve: "CVE-2021-25642", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-25642", }, { cve: "CVE-2021-26341", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-26341", }, { cve: "CVE-2021-27918", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-27918", }, { cve: "CVE-2021-28153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28153", }, { cve: "CVE-2021-28165", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28165", }, { cve: "CVE-2021-28169", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28169", }, { cve: "CVE-2021-28861", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28861", }, { cve: "CVE-2021-29425", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-29425", }, { cve: "CVE-2021-30560", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-30560", }, { cve: "CVE-2021-3114", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3114", }, { cve: "CVE-2021-33036", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33036", }, { cve: "CVE-2021-33194", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33194", }, { cve: "CVE-2021-33195", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33195", }, { cve: "CVE-2021-33196", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33196", }, { cve: "CVE-2021-33197", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33197", }, { cve: "CVE-2021-33503", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33503", }, { cve: "CVE-2021-33655", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33655", }, { cve: "CVE-2021-33656", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33656", }, { cve: "CVE-2021-3424", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3424", }, { cve: "CVE-2021-34428", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-34428", }, { cve: "CVE-2021-3449", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3449", }, { cve: "CVE-2021-3450", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3450", }, { cve: "CVE-2021-3530", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3530", }, { cve: "CVE-2021-36221", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36221", }, { cve: "CVE-2021-36373", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36373", }, { cve: "CVE-2021-36374", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36374", }, { cve: "CVE-2021-3648", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3648", }, { cve: "CVE-2021-36690", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36690", }, { cve: "CVE-2021-3711", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3711", }, { cve: "CVE-2021-3712", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3712", }, { cve: "CVE-2021-37136", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37136", }, { cve: "CVE-2021-37137", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37137", }, { cve: "CVE-2021-37404", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37404", }, { cve: "CVE-2021-37533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37533", }, { cve: "CVE-2021-3754", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3754", }, { cve: "CVE-2021-3778", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3778", }, { cve: "CVE-2021-3796", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3796", }, { cve: "CVE-2021-3826", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3826", }, { cve: "CVE-2021-3827", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3827", }, { cve: "CVE-2021-38297", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-38297", }, { cve: "CVE-2021-3872", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3872", }, { cve: "CVE-2021-3875", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3875", }, { cve: "CVE-2021-3903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3903", }, { cve: "CVE-2021-3923", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3923", }, { cve: "CVE-2021-3927", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3927", }, { cve: "CVE-2021-3928", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3928", }, { cve: "CVE-2021-3968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3968", }, { cve: "CVE-2021-3973", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3973", }, { cve: "CVE-2021-3974", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3974", }, { cve: "CVE-2021-3984", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3984", }, { cve: "CVE-2021-4019", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4019", }, { cve: "CVE-2021-4037", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4037", }, { cve: "CVE-2021-4069", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4069", }, { cve: "CVE-2021-4104", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4104", }, { cve: "CVE-2021-4136", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4136", }, { cve: "CVE-2021-4157", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4157", }, { cve: "CVE-2021-4166", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4166", }, { cve: "CVE-2021-41771", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-41771", }, { cve: "CVE-2021-4192", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4192", }, { cve: "CVE-2021-4193", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4193", }, { cve: "CVE-2021-4203", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4203", }, { cve: "CVE-2021-42567", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-42567", }, { cve: "CVE-2021-43797", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-43797", }, { cve: "CVE-2021-44531", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44531", }, { cve: "CVE-2021-44532", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44532", }, { cve: "CVE-2021-44533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44533", }, { cve: "CVE-2021-44716", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44716", }, { cve: "CVE-2021-44878", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44878", }, { cve: "CVE-2021-45078", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-45078", }, { cve: "CVE-2021-46195", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-46195", }, { cve: "CVE-2021-46828", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-46828", }, { cve: "CVE-2021-46848", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-46848", }, { cve: "CVE-2022-0128", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0128", }, { cve: "CVE-2022-0213", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0213", }, { cve: "CVE-2022-0225", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0225", }, { cve: "CVE-2022-0261", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0261", }, { cve: "CVE-2022-0318", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0318", }, { cve: "CVE-2022-0319", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0319", }, { cve: "CVE-2022-0351", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0351", }, { cve: "CVE-2022-0359", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0359", }, { cve: "CVE-2022-0361", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0361", }, { cve: "CVE-2022-0392", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0392", }, { cve: "CVE-2022-0407", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0407", }, { cve: "CVE-2022-0413", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0413", }, { cve: "CVE-2022-0561", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0561", }, { cve: "CVE-2022-0696", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0696", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-1184", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1184", }, { cve: "CVE-2022-1245", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1245", }, { cve: "CVE-2022-1271", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1271", }, { cve: "CVE-2022-1292", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1292", }, { cve: "CVE-2022-1381", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1381", }, { cve: "CVE-2022-1420", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1420", }, { cve: "CVE-2022-1462", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1462", }, { cve: "CVE-2022-1466", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1466", }, { cve: "CVE-2022-1471", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1471", }, { cve: "CVE-2022-1586", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1586", }, { cve: "CVE-2022-1587", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1587", }, { cve: "CVE-2022-1616", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1616", }, { cve: "CVE-2022-1619", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1619", }, { cve: "CVE-2022-1620", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1620", }, { cve: "CVE-2022-1679", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1679", }, { cve: "CVE-2022-1705", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1705", }, { cve: "CVE-2022-1720", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1720", }, { cve: "CVE-2022-1729", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1729", }, { cve: "CVE-2022-1733", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1733", }, { cve: "CVE-2022-1735", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1735", }, { cve: "CVE-2022-1771", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1771", }, { cve: "CVE-2022-1785", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1785", }, { cve: "CVE-2022-1796", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1796", }, { cve: "CVE-2022-1851", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1851", }, { cve: "CVE-2022-1897", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1897", }, { cve: "CVE-2022-1898", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1898", }, { cve: "CVE-2022-1927", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1927", }, { cve: "CVE-2022-1962", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1962", }, { cve: "CVE-2022-1968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1968", }, { cve: "CVE-2022-1974", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1974", }, { cve: "CVE-2022-1975", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1975", }, { cve: "CVE-2022-20132", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20132", }, { cve: "CVE-2022-20141", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20141", }, { cve: "CVE-2022-20154", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20154", }, { cve: "CVE-2022-20166", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20166", }, { cve: "CVE-2022-20368", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20368", }, { cve: "CVE-2022-20369", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20369", }, { cve: "CVE-2022-2047", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2047", }, { cve: "CVE-2022-2048", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2048", }, { cve: "CVE-2022-20567", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20567", }, { cve: "CVE-2022-2068", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2068", }, { cve: "CVE-2022-2097", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2097", }, { cve: "CVE-2022-21216", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21216", }, { cve: "CVE-2022-21233", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21233", }, { cve: "CVE-2022-2124", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2124", }, { cve: "CVE-2022-2125", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2125", }, { cve: "CVE-2022-2126", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2126", }, { cve: "CVE-2022-2129", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2129", }, { cve: "CVE-2022-21363", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21363", }, { cve: "CVE-2022-21385", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21385", }, { cve: "CVE-2022-21499", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21499", }, { cve: "CVE-2022-2153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2153", }, { cve: "CVE-2022-21540", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21540", }, { cve: "CVE-2022-21541", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21541", }, { cve: "CVE-2022-21549", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21549", }, { cve: "CVE-2022-21618", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21618", }, { cve: "CVE-2022-21619", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21619", }, { cve: "CVE-2022-21624", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21624", }, { cve: "CVE-2022-21626", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21626", }, { cve: "CVE-2022-21628", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21628", }, { cve: "CVE-2022-21702", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21702", }, { cve: "CVE-2022-2175", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2175", }, { cve: "CVE-2022-2182", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2182", }, { cve: "CVE-2022-2183", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2183", }, { cve: "CVE-2022-2206", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2206", }, { cve: "CVE-2022-2207", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2207", }, { cve: "CVE-2022-2208", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2208", }, { cve: "CVE-2022-2210", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2210", }, { cve: "CVE-2022-2231", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2231", }, { cve: "CVE-2022-2256", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2256", }, { cve: "CVE-2022-2257", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2257", }, { cve: "CVE-2022-2264", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2264", }, { cve: "CVE-2022-2284", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2284", }, { cve: "CVE-2022-2285", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2285", }, { cve: "CVE-2022-2286", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2286", }, { cve: "CVE-2022-2287", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2287", }, { cve: "CVE-2022-22976", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-22976", }, { cve: "CVE-2022-22978", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-22978", }, { cve: "CVE-2022-2304", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2304", }, { cve: "CVE-2022-2318", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2318", }, { cve: "CVE-2022-23302", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23302", }, { cve: "CVE-2022-23305", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23305", }, { cve: "CVE-2022-23307", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23307", }, { cve: "CVE-2022-2343", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2343", }, { cve: "CVE-2022-2344", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2344", }, { cve: "CVE-2022-2345", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2345", }, { cve: "CVE-2022-23471", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23471", }, { cve: "CVE-2022-23521", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23521", }, { cve: "CVE-2022-23772", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23772", }, { cve: "CVE-2022-23773", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23773", }, { cve: "CVE-2022-24302", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24302", }, { cve: "CVE-2022-24329", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24329", }, { cve: "CVE-2022-24823", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24823", }, { cve: "CVE-2022-24903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24903", }, { cve: "CVE-2022-2503", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2503", }, { cve: "CVE-2022-25147", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25147", }, { cve: "CVE-2022-25168", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25168", }, { cve: "CVE-2022-2519", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2519", }, { cve: "CVE-2022-2520", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2520", }, { cve: "CVE-2022-2521", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2521", }, { cve: "CVE-2022-2522", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2522", }, { cve: "CVE-2022-25647", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25647", }, { cve: "CVE-2022-2571", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2571", }, { cve: "CVE-2022-2580", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2580", }, { cve: "CVE-2022-2581", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2581", }, { cve: "CVE-2022-25857", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25857", }, { cve: "CVE-2022-2588", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2588", }, { cve: "CVE-2022-2598", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2598", }, { cve: "CVE-2022-26148", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26148", }, { cve: "CVE-2022-26365", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26365", }, { cve: "CVE-2022-26373", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26373", }, { cve: "CVE-2022-2639", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2639", }, { cve: "CVE-2022-26612", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26612", }, { cve: "CVE-2022-2663", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2663", }, { cve: "CVE-2022-27781", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-27781", }, { cve: "CVE-2022-27782", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-27782", }, { cve: "CVE-2022-27943", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-27943", }, { cve: "CVE-2022-2795", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2795", }, { cve: "CVE-2022-28131", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28131", }, { cve: "CVE-2022-2816", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2816", }, { cve: "CVE-2022-2817", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2817", }, { cve: "CVE-2022-2819", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2819", }, { cve: "CVE-2022-28327", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28327", }, { cve: "CVE-2022-2845", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2845", }, { cve: "CVE-2022-2849", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2849", }, { cve: "CVE-2022-2862", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2862", }, { cve: "CVE-2022-2867", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2867", }, { cve: "CVE-2022-2868", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2868", }, { cve: "CVE-2022-2869", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2869", }, { cve: "CVE-2022-28693", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28693", }, { cve: "CVE-2022-2874", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2874", }, { cve: "CVE-2022-28748", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28748", }, { cve: "CVE-2022-2880", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2880", }, { cve: "CVE-2022-2889", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2889", }, { cve: "CVE-2022-29162", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29162", }, { cve: "CVE-2022-29187", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29187", }, { cve: "CVE-2022-2923", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2923", }, { cve: "CVE-2022-2946", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2946", }, { cve: "CVE-2022-29526", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29526", }, { cve: "CVE-2022-29583", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29583", }, { cve: "CVE-2022-2964", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2964", }, { cve: "CVE-2022-2977", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2977", }, { cve: "CVE-2022-2980", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2980", }, { cve: "CVE-2022-2982", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2982", }, { cve: "CVE-2022-29900", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29900", }, { cve: "CVE-2022-29901", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29901", }, { cve: "CVE-2022-2991", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2991", }, { cve: "CVE-2022-3016", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3016", }, { cve: "CVE-2022-3028", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3028", }, { cve: "CVE-2022-3037", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3037", }, { cve: "CVE-2022-30580", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30580", }, { cve: "CVE-2022-30630", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30630", }, { cve: "CVE-2022-30631", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30631", }, { cve: "CVE-2022-30632", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30632", }, { cve: "CVE-2022-30633", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30633", }, { cve: "CVE-2022-3099", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3099", }, { cve: "CVE-2022-31030", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-31030", }, { cve: "CVE-2022-31159", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-31159", }, { cve: "CVE-2022-3134", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3134", }, { cve: "CVE-2022-3153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3153", }, { cve: "CVE-2022-3169", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3169", }, { cve: "CVE-2022-31690", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-31690", }, { cve: "CVE-2022-32148", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32148", }, { cve: "CVE-2022-32149", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32149", }, { cve: "CVE-2022-32206", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32206", }, { cve: "CVE-2022-32208", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32208", }, { cve: "CVE-2022-32221", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32221", }, { cve: "CVE-2022-3234", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3234", }, { cve: "CVE-2022-3235", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3235", }, { cve: "CVE-2022-3239", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3239", }, { cve: "CVE-2022-3278", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3278", }, { cve: "CVE-2022-3296", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3296", }, { cve: "CVE-2022-3297", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3297", }, { cve: "CVE-2022-33196", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33196", }, { cve: "CVE-2022-3324", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3324", }, { cve: "CVE-2022-3352", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3352", }, { cve: "CVE-2022-33740", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33740", }, { cve: "CVE-2022-33741", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33741", }, { cve: "CVE-2022-33742", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33742", }, { cve: "CVE-2022-33972", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33972", }, { cve: "CVE-2022-33981", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33981", }, { cve: "CVE-2022-34169", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34169", }, { cve: "CVE-2022-3424", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3424", }, { cve: "CVE-2022-34266", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34266", }, { cve: "CVE-2022-34526", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34526", }, { cve: "CVE-2022-34903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34903", }, { cve: "CVE-2022-3491", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3491", }, { cve: "CVE-2022-3515", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3515", }, { cve: "CVE-2022-3520", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3520", }, { cve: "CVE-2022-3521", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3521", }, { cve: "CVE-2022-3524", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3524", }, { cve: "CVE-2022-35252", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-35252", }, { cve: "CVE-2022-3542", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3542", }, { cve: "CVE-2022-3545", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3545", }, { cve: "CVE-2022-3564", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3564", }, { cve: "CVE-2022-3565", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3565", }, { cve: "CVE-2022-3566", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3566", }, { cve: "CVE-2022-3567", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3567", }, { cve: "CVE-2022-35737", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-35737", }, { cve: "CVE-2022-3586", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3586", }, { cve: "CVE-2022-3591", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3591", }, { cve: "CVE-2022-3594", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3594", }, { cve: "CVE-2022-3597", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3597", }, { cve: "CVE-2022-3599", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3599", }, { cve: "CVE-2022-36109", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36109", }, { cve: "CVE-2022-3621", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3621", }, { cve: "CVE-2022-3626", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3626", }, { cve: "CVE-2022-3627", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3627", }, { cve: "CVE-2022-3628", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3628", }, { cve: "CVE-2022-36280", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36280", }, { cve: "CVE-2022-3629", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3629", }, { cve: "CVE-2022-3635", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3635", }, { cve: "CVE-2022-3643", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3643", }, { cve: "CVE-2022-36437", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36437", }, { cve: "CVE-2022-3646", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3646", }, { cve: "CVE-2022-3649", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3649", }, { cve: "CVE-2022-36760", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36760", }, { cve: "CVE-2022-36879", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36879", }, { cve: "CVE-2022-36946", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36946", }, { cve: "CVE-2022-3705", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3705", }, { cve: "CVE-2022-37434", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37434", }, { cve: "CVE-2022-37436", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37436", }, { cve: "CVE-2022-37865", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37865", }, { cve: "CVE-2022-37866", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37866", }, { cve: "CVE-2022-38090", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38090", }, { cve: "CVE-2022-38096", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38096", }, { cve: "CVE-2022-38126", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38126", }, { cve: "CVE-2022-38127", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38127", }, { cve: "CVE-2022-38177", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38177", }, { cve: "CVE-2022-38178", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38178", }, { cve: "CVE-2022-3821", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3821", }, { cve: "CVE-2022-38533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38533", }, { cve: "CVE-2022-38749", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38749", }, { cve: "CVE-2022-38750", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38750", }, { cve: "CVE-2022-38751", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38751", }, { cve: "CVE-2022-38752", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38752", }, { cve: "CVE-2022-39028", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-39028", }, { cve: "CVE-2022-3903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3903", }, { cve: "CVE-2022-39188", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-39188", }, { cve: "CVE-2022-39399", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-39399", }, { cve: "CVE-2022-3970", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3970", }, { cve: "CVE-2022-40149", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40149", }, { cve: "CVE-2022-40150", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40150", }, { cve: "CVE-2022-40151", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40151", }, { cve: "CVE-2022-40152", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40152", }, { cve: "CVE-2022-40153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40153", }, { cve: "CVE-2022-40303", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40304", }, { cve: "CVE-2022-40307", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40307", }, { cve: "CVE-2022-40674", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40674", }, { cve: "CVE-2022-40768", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40768", }, { cve: "CVE-2022-40899", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40899", }, { cve: "CVE-2022-4095", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4095", }, { cve: "CVE-2022-41218", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41218", }, { cve: "CVE-2022-4129", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4129", }, { cve: "CVE-2022-4141", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4141", }, { cve: "CVE-2022-41717", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41717", }, { cve: "CVE-2022-41721", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41721", }, { cve: "CVE-2022-41848", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41848", }, { cve: "CVE-2022-41850", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41850", }, { cve: "CVE-2022-41854", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41854", }, { cve: "CVE-2022-41858", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41858", }, { cve: "CVE-2022-41881", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41881", }, { cve: "CVE-2022-41903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41903", }, { cve: "CVE-2022-41915", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41915", }, { cve: "CVE-2022-41966", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41966", }, { cve: "CVE-2022-41974", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41974", }, { cve: "CVE-2022-42003", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42003", }, { cve: "CVE-2022-42004", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42004", }, { cve: "CVE-2022-42010", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42010", }, { cve: "CVE-2022-42011", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42011", }, { cve: "CVE-2022-42012", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42012", }, { cve: "CVE-2022-42328", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42328", }, { cve: "CVE-2022-42329", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42329", }, { cve: "CVE-2022-42703", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42703", }, { cve: "CVE-2022-42889", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42889", }, { cve: "CVE-2022-42895", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42895", }, { cve: "CVE-2022-42896", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42896", }, { cve: "CVE-2022-42898", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42898", }, { cve: "CVE-2022-4292", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4292", }, { cve: "CVE-2022-4293", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4293", }, { cve: "CVE-2022-42969", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42969", }, { cve: "CVE-2022-4304", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4304", }, { cve: "CVE-2022-43552", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43552", }, { cve: "CVE-2022-43680", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43680", }, { cve: "CVE-2022-43750", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43750", }, { cve: "CVE-2022-4378", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4378", }, { cve: "CVE-2022-43945", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43945", }, { cve: "CVE-2022-43995", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43995", }, { cve: "CVE-2022-4415", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4415", }, { cve: "CVE-2022-4450", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4450", }, { cve: "CVE-2022-44638", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-44638", }, { cve: "CVE-2022-45061", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45061", }, { cve: "CVE-2022-45688", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45688", }, { cve: "CVE-2022-45884", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45884", }, { cve: "CVE-2022-45885", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45885", }, { cve: "CVE-2022-45886", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45886", }, { cve: "CVE-2022-45887", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45887", }, { cve: "CVE-2022-45919", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45919", }, { cve: "CVE-2022-45934", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45934", }, { cve: "CVE-2022-45939", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45939", }, { cve: "CVE-2022-4662", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4662", }, { cve: "CVE-2022-46751", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-46751", }, { cve: "CVE-2022-46908", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-46908", }, { cve: "CVE-2022-47629", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-47629", }, { cve: "CVE-2022-47929", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-47929", }, { cve: "CVE-2022-48281", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-48281", }, { cve: "CVE-2022-48337", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-48337", }, { cve: "CVE-2022-48339", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-48339", }, { cve: "CVE-2023-0045", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0045", }, { cve: "CVE-2023-0049", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0049", }, { cve: "CVE-2023-0051", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0051", }, { cve: "CVE-2023-0054", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0054", }, { cve: "CVE-2023-0215", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0215", }, { cve: "CVE-2023-0286", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0286", }, { cve: "CVE-2023-0288", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0288", }, { cve: "CVE-2023-0433", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0433", }, { cve: "CVE-2023-0464", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0466", }, { cve: "CVE-2023-0512", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0512", }, { cve: "CVE-2023-0590", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0590", }, { cve: "CVE-2023-0597", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0597", }, { cve: "CVE-2023-0833", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0833", }, { cve: "CVE-2023-1076", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1076", }, { cve: "CVE-2023-1095", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1095", }, { cve: "CVE-2023-1118", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1118", }, { cve: "CVE-2023-1127", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1127", }, { cve: "CVE-2023-1170", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1170", }, { cve: "CVE-2023-1175", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1175", }, { cve: "CVE-2023-1370", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1370", }, { cve: "CVE-2023-1380", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1380", }, { cve: "CVE-2023-1390", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1390", }, { cve: "CVE-2023-1436", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1436", }, { cve: "CVE-2023-1513", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1513", }, { cve: "CVE-2023-1611", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1611", }, { cve: "CVE-2023-1670", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1670", }, { cve: "CVE-2023-1855", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1855", }, { cve: "CVE-2023-1989", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1989", }, { cve: "CVE-2023-1990", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1990", }, { cve: "CVE-2023-1998", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1998", }, { cve: "CVE-2023-20862", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-20862", }, { cve: "CVE-2023-2124", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2124", }, { cve: "CVE-2023-2162", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2162", }, { cve: "CVE-2023-2176", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2176", }, { cve: "CVE-2023-21830", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21830", }, { cve: "CVE-2023-21835", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21835", }, { cve: "CVE-2023-21843", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21843", }, { cve: "CVE-2023-21930", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21930", }, { cve: "CVE-2023-21937", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21937", }, { cve: "CVE-2023-21938", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21938", }, { cve: "CVE-2023-21939", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21939", }, { cve: "CVE-2023-2194", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2194", }, { cve: "CVE-2023-21954", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21954", }, { cve: "CVE-2023-21967", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21967", }, { cve: "CVE-2023-21968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21968", }, { cve: "CVE-2023-22490", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-22490", }, { cve: "CVE-2023-2253", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2253", }, { cve: "CVE-2023-22809", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-22809", }, { cve: "CVE-2023-23454", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23454", }, { cve: "CVE-2023-23455", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23455", }, { cve: "CVE-2023-23559", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23559", }, { cve: "CVE-2023-23916", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23916", }, { cve: "CVE-2023-23946", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23946", }, { cve: "CVE-2023-24329", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24329", }, { cve: "CVE-2023-24532", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24532", }, { cve: "CVE-2023-24534", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24534", }, { cve: "CVE-2023-2483", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2483", }, { cve: "CVE-2023-24998", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24998", }, { cve: "CVE-2023-2513", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2513", }, { cve: "CVE-2023-25193", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25193", }, { cve: "CVE-2023-25652", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25652", }, { cve: "CVE-2023-25690", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25690", }, { cve: "CVE-2023-25809", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25809", }, { cve: "CVE-2023-25815", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25815", }, { cve: "CVE-2023-26048", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26048", }, { cve: "CVE-2023-26049", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26049", }, { cve: "CVE-2023-2650", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2650", }, { cve: "CVE-2023-26545", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26545", }, { cve: "CVE-2023-26604", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26604", }, { cve: "CVE-2023-27533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27533", }, { cve: "CVE-2023-27534", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27534", }, { cve: "CVE-2023-27535", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27535", }, { cve: "CVE-2023-27536", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27536", }, { cve: "CVE-2023-27538", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27538", }, { cve: "CVE-2023-27561", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27561", }, { cve: "CVE-2023-2828", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2828", }, { cve: "CVE-2023-28320", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28320", }, { cve: "CVE-2023-28321", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28321", }, { cve: "CVE-2023-28322", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28322", }, { cve: "CVE-2023-28328", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28328", }, { cve: "CVE-2023-28464", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28464", }, { cve: "CVE-2023-28486", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28486", }, { cve: "CVE-2023-28487", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28487", }, { cve: "CVE-2023-28642", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28642", }, { cve: "CVE-2023-28772", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28772", }, { cve: "CVE-2023-28840", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28840", }, { cve: "CVE-2023-28841", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28841", }, { cve: "CVE-2023-28842", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28842", }, { cve: "CVE-2023-29007", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29007", }, { cve: "CVE-2023-29383", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29383", }, { cve: "CVE-2023-29402", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29402", }, { cve: "CVE-2023-29406", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29406", }, { cve: "CVE-2023-29409", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29409", }, { cve: "CVE-2023-2976", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2976", }, { cve: "CVE-2023-30630", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-30630", }, { cve: "CVE-2023-30772", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-30772", }, { cve: "CVE-2023-31084", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-31084", }, { cve: "CVE-2023-3138", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-3138", }, { cve: "CVE-2023-31436", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-31436", }, { cve: "CVE-2023-31484", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-31484", }, { cve: "CVE-2023-32269", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-32269", }, { cve: "CVE-2023-32697", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-32697", }, { cve: "CVE-2023-33264", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-33264", }, { cve: "CVE-2023-34034", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34034", }, { cve: "CVE-2023-34035", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34035", }, { cve: "CVE-2023-34453", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34453", }, { cve: "CVE-2023-34454", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34454", }, { cve: "CVE-2023-34455", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34455", }, { cve: "CVE-2023-34462", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34462", }, { cve: "CVE-2023-35116", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-35116", }, { cve: "CVE-2023-3635", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-3635", }, { cve: "CVE-2023-36479", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-36479", }, { cve: "CVE-2023-39533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-39533", }, { cve: "CVE-2023-40167", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-40167", }, { cve: "CVE-2023-40217", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-40217", }, { cve: "CVE-2023-41105", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-41105", }, { cve: "CVE-2023-41900", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-41900", }, { cve: "CVE-2023-43642", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-43642", }, { cve: "CVE-2023-43804", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-43804", }, { cve: "CVE-2023-44487", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-44487", }, { cve: "CVE-2023-45803", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-45803", }, { cve: "CVE-2024-21626", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2024-21626", }, ], }
wid-sec-w-2022-1335
Vulnerability from csaf_certbund
Published
2022-09-07 22:00
Modified
2023-05-18 22:00
Summary
Xerox FreeFlow Print Server: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.
Betroffene Betriebssysteme
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", title: "Angriff", }, { category: "general", text: "- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-1335 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1335.json", }, { category: "self", summary: "WID-SEC-2022-1335 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1335", }, { category: "external", summary: "XEROX Security Advisory XRX23-007 vom 2023-05-18", url: "https://security.business.xerox.com/wp-content/uploads/2023/05/Xerox-Security-Bulletin-XRX23-007-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v7.pdf", }, { category: "external", summary: "XEROX Security Advisory XRX23-005 vom 2023-04-04", url: "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-021 vom 2022-09-07", url: "https://securitydocs.business.xerox.com/wp-content/uploads/2022/09/Xerox-Security-Bulletin-XRX22-021-FreeFlow-Print-Server-v9.pdf", }, ], source_lang: "en-US", title: "Xerox FreeFlow Print Server: Mehrere Schwachstellen", tracking: { current_release_date: "2023-05-18T22:00:00.000+00:00", generator: { date: "2024-08-15T17:34:44.234+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-1335", initial_release_date: "2022-09-07T22:00:00.000+00:00", revision_history: [ { date: "2022-09-07T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-04-03T22:00:00.000+00:00", number: "2", summary: "Neue Updates von XEROX aufgenommen", }, { date: "2023-05-18T22:00:00.000+00:00", number: "3", summary: "Neue Updates von XEROX aufgenommen", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Xerox FreeFlow Print Server 7", product: { name: "Xerox FreeFlow Print Server 7", product_id: "T000872", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:7", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server 9", product: { name: "Xerox FreeFlow Print Server 9", product_id: "T002977", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:9", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server v9", product: { name: "Xerox FreeFlow Print Server v9", product_id: "T015632", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:v9", }, }, }, ], category: "product_name", name: "FreeFlow Print Server", }, ], category: "vendor", name: "Xerox", }, ], }, vulnerabilities: [ { cve: "CVE-2018-25032", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2018-25032", }, { cve: "CVE-2019-19906", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2019-19906", }, { cve: "CVE-2020-0499", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2020-0499", }, { cve: "CVE-2020-25717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2020-25717", }, { cve: "CVE-2020-29651", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2020-29651", }, { cve: "CVE-2021-0561", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-0561", }, { cve: "CVE-2021-21708", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-21708", }, { cve: "CVE-2021-22946", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-22946", }, { cve: "CVE-2021-25220", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-25220", }, { cve: "CVE-2021-29923", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-29923", }, { cve: "CVE-2021-30809", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30809", }, { cve: "CVE-2021-30818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30818", }, { cve: "CVE-2021-30823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30823", }, { cve: "CVE-2021-30836", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30836", }, { cve: "CVE-2021-30884", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30884", }, { cve: "CVE-2021-30887", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30887", }, { cve: "CVE-2021-30888", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30888", }, { cve: "CVE-2021-30889", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30889", }, { cve: "CVE-2021-30890", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30890", }, { cve: "CVE-2021-30897", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30897", }, { cve: "CVE-2021-30934", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30934", }, { cve: "CVE-2021-30936", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30936", }, { cve: "CVE-2021-30951", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30951", }, { cve: "CVE-2021-30952", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30952", }, { cve: "CVE-2021-30953", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30953", }, { cve: "CVE-2021-30954", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30954", }, { cve: "CVE-2021-30984", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-30984", }, { cve: "CVE-2021-3448", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-3448", }, { cve: "CVE-2021-34558", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-34558", }, { cve: "CVE-2021-36221", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-36221", }, { cve: "CVE-2021-4115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4115", }, { cve: "CVE-2021-4136", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4136", }, { cve: "CVE-2021-4166", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4166", }, { cve: "CVE-2021-4173", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4173", }, { cve: "CVE-2021-41771", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-41771", }, { cve: "CVE-2021-41772", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-41772", }, { cve: "CVE-2021-4187", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4187", }, { cve: "CVE-2021-4192", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4192", }, { cve: "CVE-2021-4193", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4193", }, { cve: "CVE-2021-4217", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-4217", }, { cve: "CVE-2021-43519", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-43519", }, { cve: "CVE-2021-43566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-43566", }, { cve: "CVE-2021-44142", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-44142", }, { cve: "CVE-2021-45444", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45444", }, { cve: "CVE-2021-45481", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45481", }, { cve: "CVE-2021-45482", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45482", }, { cve: "CVE-2021-45483", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45483", }, { cve: "CVE-2021-45960", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-45960", }, { cve: "CVE-2021-46143", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2021-46143", }, { cve: "CVE-2022-0128", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0128", }, { cve: "CVE-2022-0156", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0156", }, { cve: "CVE-2022-0158", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0158", }, { cve: "CVE-2022-0261", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0261", }, { cve: "CVE-2022-0318", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0318", }, { cve: "CVE-2022-0319", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0319", }, { cve: "CVE-2022-0336", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0336", }, { cve: "CVE-2022-0391", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0391", }, { cve: "CVE-2022-0408", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0408", }, { cve: "CVE-2022-0413", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0413", }, { cve: "CVE-2022-0417", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0417", }, { cve: "CVE-2022-0443", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0443", }, { cve: "CVE-2022-0554", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0554", }, { cve: "CVE-2022-0566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0566", }, { cve: "CVE-2022-0572", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0572", }, { cve: "CVE-2022-0629", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0629", }, { cve: "CVE-2022-0685", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0685", }, { cve: "CVE-2022-0696", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0696", }, { cve: "CVE-2022-0714", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0714", }, { cve: "CVE-2022-0729", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0729", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-1097", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1097", }, { cve: "CVE-2022-1196", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1196", }, { cve: "CVE-2022-1197", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1197", }, { cve: "CVE-2022-1271", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1271", }, { cve: "CVE-2022-1520", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1520", }, { cve: "CVE-2022-1834", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-1834", }, { cve: "CVE-2022-21245", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21245", }, { cve: "CVE-2022-21270", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21270", }, { cve: "CVE-2022-21291", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21291", }, { cve: "CVE-2022-21303", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21303", }, { cve: "CVE-2022-21304", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21304", }, { cve: "CVE-2022-21344", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21344", }, { cve: "CVE-2022-21349", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21349", }, { cve: "CVE-2022-21367", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21367", }, { cve: "CVE-2022-21426", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21426", }, { cve: "CVE-2022-21434", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21434", }, { cve: "CVE-2022-21443", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21443", }, { cve: "CVE-2022-21449", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21449", }, { cve: "CVE-2022-21476", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21476", }, { cve: "CVE-2022-21493", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21493", }, { cve: "CVE-2022-21494", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21494", }, { cve: "CVE-2022-21496", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21496", }, { cve: "CVE-2022-21514", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21514", }, { cve: "CVE-2022-21524", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21524", }, { cve: "CVE-2022-21533", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21533", }, { cve: "CVE-2022-21712", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21712", }, { cve: "CVE-2022-21716", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-21716", }, { cve: "CVE-2022-22589", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22589", }, { cve: "CVE-2022-22590", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22590", }, { cve: "CVE-2022-22592", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22592", }, { cve: "CVE-2022-22620", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22620", }, { cve: "CVE-2022-22719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22719", }, { cve: "CVE-2022-22720", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22720", }, { cve: "CVE-2022-22721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22721", }, { cve: "CVE-2022-22818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22818", }, { cve: "CVE-2022-22822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22822", }, { cve: "CVE-2022-22823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22823", }, { cve: "CVE-2022-22824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22824", }, { cve: "CVE-2022-22825", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22825", }, { cve: "CVE-2022-22826", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22826", }, { cve: "CVE-2022-22827", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-22827", }, { cve: "CVE-2022-23308", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23308", }, { cve: "CVE-2022-23772", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23772", }, { cve: "CVE-2022-23773", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23773", }, { cve: "CVE-2022-23806", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23806", }, { cve: "CVE-2022-23833", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23833", }, { cve: "CVE-2022-23852", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23852", }, { cve: "CVE-2022-23943", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23943", }, { cve: "CVE-2022-23990", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-23990", }, { cve: "CVE-2022-24130", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24130", }, { cve: "CVE-2022-24407", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24407", }, { cve: "CVE-2022-24675", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24675", }, { cve: "CVE-2022-24713", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24713", }, { cve: "CVE-2022-24801", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-24801", }, { cve: "CVE-2022-25235", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25235", }, { cve: "CVE-2022-25236", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25236", }, { cve: "CVE-2022-25313", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25313", }, { cve: "CVE-2022-25314", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25314", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-25762", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-25762", }, { cve: "CVE-2022-26381", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26381", }, { cve: "CVE-2022-26383", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26383", }, { cve: "CVE-2022-26384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26384", }, { cve: "CVE-2022-26386", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26386", }, { cve: "CVE-2022-26387", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26387", }, { cve: "CVE-2022-26485", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26485", }, { cve: "CVE-2022-26486", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-26486", }, { cve: "CVE-2022-28281", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28281", }, { cve: "CVE-2022-28282", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28282", }, { cve: "CVE-2022-28285", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28285", }, { cve: "CVE-2022-28286", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28286", }, { cve: "CVE-2022-28289", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28289", }, { cve: "CVE-2022-28327", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28327", }, { cve: "CVE-2022-28346", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28346", }, { cve: "CVE-2022-28347", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-28347", }, { cve: "CVE-2022-29824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29824", }, { cve: "CVE-2022-29909", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29909", }, { cve: "CVE-2022-29911", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29911", }, { cve: "CVE-2022-29912", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29912", }, { cve: "CVE-2022-29913", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29913", }, { cve: "CVE-2022-29914", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29914", }, { cve: "CVE-2022-29916", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29916", }, { cve: "CVE-2022-29917", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-29917", }, { cve: "CVE-2022-31736", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31736", }, { cve: "CVE-2022-31737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31737", }, { cve: "CVE-2022-31738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31738", }, { cve: "CVE-2022-31739", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31739", }, { cve: "CVE-2022-3174", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-3174", }, { cve: "CVE-2022-31740", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31740", }, { cve: "CVE-2022-31741", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31741", }, { cve: "CVE-2022-31742", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31742", }, { cve: "CVE-2022-31747", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-31747", }, { cve: "CVE-2022-4187", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.", }, ], product_status: { known_affected: [ "T000872", "T015632", "T002977", ], }, release_date: "2022-09-07T22:00:00.000+00:00", title: "CVE-2022-4187", }, ], }
wid-sec-w-2024-0794
Vulnerability from csaf_certbund
Published
2024-04-04 22:00
Modified
2024-11-27 23:00
Summary
Dell ECS: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Dell ECS ist ein Objektspeichersystem.
Angriff
Ein Angreifer kann mehrere Schwachstellen in Dell ECS ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.
Betroffene Betriebssysteme
- Linux
- UNIX
- Windows
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Dell ECS ist ein Objektspeichersystem.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein Angreifer kann mehrere Schwachstellen in Dell ECS ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", title: "Angriff", }, { category: "general", text: "- Linux\n- UNIX\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0794 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0794.json", }, { category: "self", summary: "WID-SEC-2024-0794 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0794", }, { category: "external", summary: "Dell Security Advisory DSA-2024-141 vom 2024-04-04", url: "https://www.dell.com/support/kbdoc/000223839/dsa-2024-=", }, ], source_lang: "en-US", title: "Dell ECS: Mehrere Schwachstellen", tracking: { current_release_date: "2024-11-27T23:00:00.000+00:00", generator: { date: "2024-11-28T11:39:04.623+00:00", engine: { name: "BSI-WID", version: "1.3.8", }, }, id: "WID-SEC-W-2024-0794", initial_release_date: "2024-04-04T22:00:00.000+00:00", revision_history: [ { date: "2024-04-04T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2024-11-27T23:00:00.000+00:00", number: "2", summary: "Produktzuordnung überprüft", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<3.8.1.0", product: { name: "Dell ECS <3.8.1.0", product_id: "T033919", }, }, { category: "product_version", name: "3.8.1.0", product: { name: "Dell ECS 3.8.1.0", product_id: "T033919-fixed", product_identification_helper: { cpe: "cpe:/h:dell:ecs:3.8.1.0", }, }, }, ], category: "product_name", name: "ECS", }, ], category: "vendor", name: "Dell", }, ], }, vulnerabilities: [ { cve: "CVE-2018-18074", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2018-18074", }, { cve: "CVE-2020-10663", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10663", }, { cve: "CVE-2020-10672", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10672", }, { cve: "CVE-2020-10673", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10673", }, { cve: "CVE-2020-10735", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10735", }, { cve: "CVE-2020-10968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10968", }, { cve: "CVE-2020-10969", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-10969", }, { cve: "CVE-2020-11111", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11111", }, { cve: "CVE-2020-11112", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11112", }, { cve: "CVE-2020-11113", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11113", }, { cve: "CVE-2020-11612", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11612", }, { cve: "CVE-2020-11619", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11619", }, { cve: "CVE-2020-11620", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11620", }, { cve: "CVE-2020-11979", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-11979", }, { cve: "CVE-2020-12762", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-12762", }, { cve: "CVE-2020-12825", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-12825", }, { cve: "CVE-2020-13956", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-13956", }, { cve: "CVE-2020-14060", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14060", }, { cve: "CVE-2020-14061", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14061", }, { cve: "CVE-2020-14062", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14062", }, { cve: "CVE-2020-14195", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-14195", }, { cve: "CVE-2020-15250", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-15250", }, { cve: "CVE-2020-1945", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-1945", }, { cve: "CVE-2020-1967", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-1967", }, { cve: "CVE-2020-1971", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-1971", }, { cve: "CVE-2020-24616", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-24616", }, { cve: "CVE-2020-24750", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-24750", }, { cve: "CVE-2020-25649", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-25649", }, { cve: "CVE-2020-25658", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-25658", }, { cve: "CVE-2020-26116", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-26116", }, { cve: "CVE-2020-26137", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-26137", }, { cve: "CVE-2020-26541", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-26541", }, { cve: "CVE-2020-27216", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-27216", }, { cve: "CVE-2020-27218", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-27218", }, { cve: "CVE-2020-27223", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-27223", }, { cve: "CVE-2020-28366", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-28366", }, { cve: "CVE-2020-28493", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-28493", }, { cve: "CVE-2020-29509", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29509", }, { cve: "CVE-2020-29511", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29511", }, { cve: "CVE-2020-29582", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29582", }, { cve: "CVE-2020-29651", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-29651", }, { cve: "CVE-2020-35490", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-35490", }, { cve: "CVE-2020-35491", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-35491", }, { cve: "CVE-2020-35728", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-35728", }, { cve: "CVE-2020-36179", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36179", }, { cve: "CVE-2020-36180", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36180", }, { cve: "CVE-2020-36181", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36181", }, { cve: "CVE-2020-36182", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36182", }, { cve: "CVE-2020-36183", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36183", }, { cve: "CVE-2020-36184", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36184", }, { cve: "CVE-2020-36185", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36185", }, { cve: "CVE-2020-36186", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36186", }, { cve: "CVE-2020-36187", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36187", }, { cve: "CVE-2020-36188", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36188", }, { cve: "CVE-2020-36189", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36189", }, { cve: "CVE-2020-36516", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36516", }, { cve: "CVE-2020-36518", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36518", }, { cve: "CVE-2020-36557", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36557", }, { cve: "CVE-2020-36558", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36558", }, { cve: "CVE-2020-36691", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-36691", }, { cve: "CVE-2020-7238", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-7238", }, { cve: "CVE-2020-8840", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8840", }, { cve: "CVE-2020-8908", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8908", }, { cve: "CVE-2020-8911", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8911", }, { cve: "CVE-2020-8912", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-8912", }, { cve: "CVE-2020-9488", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9488", }, { cve: "CVE-2020-9493", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9493", }, { cve: "CVE-2020-9546", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9546", }, { cve: "CVE-2020-9547", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9547", }, { cve: "CVE-2020-9548", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2020-9548", }, { cve: "CVE-2021-20190", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-20190", }, { cve: "CVE-2021-20323", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-20323", }, { cve: "CVE-2021-21290", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-21290", }, { cve: "CVE-2021-21295", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-21295", }, { cve: "CVE-2021-21409", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-21409", }, { cve: "CVE-2021-23840", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-23840", }, { cve: "CVE-2021-23841", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-23841", }, { cve: "CVE-2021-2471", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-2471", }, { cve: "CVE-2021-25642", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-25642", }, { cve: "CVE-2021-26341", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-26341", }, { cve: "CVE-2021-27918", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-27918", }, { cve: "CVE-2021-28153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28153", }, { cve: "CVE-2021-28165", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28165", }, { cve: "CVE-2021-28169", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28169", }, { cve: "CVE-2021-28861", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-28861", }, { cve: "CVE-2021-29425", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-29425", }, { cve: "CVE-2021-30560", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-30560", }, { cve: "CVE-2021-3114", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3114", }, { cve: "CVE-2021-33036", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33036", }, { cve: "CVE-2021-33194", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33194", }, { cve: "CVE-2021-33195", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33195", }, { cve: "CVE-2021-33196", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33196", }, { cve: "CVE-2021-33197", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33197", }, { cve: "CVE-2021-33503", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33503", }, { cve: "CVE-2021-33655", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33655", }, { cve: "CVE-2021-33656", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-33656", }, { cve: "CVE-2021-3424", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3424", }, { cve: "CVE-2021-34428", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-34428", }, { cve: "CVE-2021-3449", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3449", }, { cve: "CVE-2021-3450", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3450", }, { cve: "CVE-2021-3530", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3530", }, { cve: "CVE-2021-36221", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36221", }, { cve: "CVE-2021-36373", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36373", }, { cve: "CVE-2021-36374", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36374", }, { cve: "CVE-2021-3648", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3648", }, { cve: "CVE-2021-36690", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-36690", }, { cve: "CVE-2021-3711", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3711", }, { cve: "CVE-2021-3712", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3712", }, { cve: "CVE-2021-37136", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37136", }, { cve: "CVE-2021-37137", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37137", }, { cve: "CVE-2021-37404", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37404", }, { cve: "CVE-2021-37533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-37533", }, { cve: "CVE-2021-3754", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3754", }, { cve: "CVE-2021-3778", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3778", }, { cve: "CVE-2021-3796", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3796", }, { cve: "CVE-2021-3826", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3826", }, { cve: "CVE-2021-3827", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3827", }, { cve: "CVE-2021-38297", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-38297", }, { cve: "CVE-2021-3872", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3872", }, { cve: "CVE-2021-3875", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3875", }, { cve: "CVE-2021-3903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3903", }, { cve: "CVE-2021-3923", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3923", }, { cve: "CVE-2021-3927", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3927", }, { cve: "CVE-2021-3928", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3928", }, { cve: "CVE-2021-3968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3968", }, { cve: "CVE-2021-3973", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3973", }, { cve: "CVE-2021-3974", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3974", }, { cve: "CVE-2021-3984", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-3984", }, { cve: "CVE-2021-4019", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4019", }, { cve: "CVE-2021-4037", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4037", }, { cve: "CVE-2021-4069", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4069", }, { cve: "CVE-2021-4104", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4104", }, { cve: "CVE-2021-4136", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4136", }, { cve: "CVE-2021-4157", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4157", }, { cve: "CVE-2021-4166", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4166", }, { cve: "CVE-2021-41771", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-41771", }, { cve: "CVE-2021-4192", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4192", }, { cve: "CVE-2021-4193", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4193", }, { cve: "CVE-2021-4203", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-4203", }, { cve: "CVE-2021-42567", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-42567", }, { cve: "CVE-2021-43797", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-43797", }, { cve: "CVE-2021-44531", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44531", }, { cve: "CVE-2021-44532", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44532", }, { cve: "CVE-2021-44533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44533", }, { cve: "CVE-2021-44716", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44716", }, { cve: "CVE-2021-44878", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-44878", }, { cve: "CVE-2021-45078", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-45078", }, { cve: "CVE-2021-46195", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-46195", }, { cve: "CVE-2021-46828", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-46828", }, { cve: "CVE-2021-46848", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2021-46848", }, { cve: "CVE-2022-0128", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0128", }, { cve: "CVE-2022-0213", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0213", }, { cve: "CVE-2022-0225", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0225", }, { cve: "CVE-2022-0261", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0261", }, { cve: "CVE-2022-0318", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0318", }, { cve: "CVE-2022-0319", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0319", }, { cve: "CVE-2022-0351", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0351", }, { cve: "CVE-2022-0359", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0359", }, { cve: "CVE-2022-0361", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0361", }, { cve: "CVE-2022-0392", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0392", }, { cve: "CVE-2022-0407", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0407", }, { cve: "CVE-2022-0413", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0413", }, { cve: "CVE-2022-0561", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0561", }, { cve: "CVE-2022-0696", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0696", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-1184", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1184", }, { cve: "CVE-2022-1245", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1245", }, { cve: "CVE-2022-1271", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1271", }, { cve: "CVE-2022-1292", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1292", }, { cve: "CVE-2022-1381", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1381", }, { cve: "CVE-2022-1420", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1420", }, { cve: "CVE-2022-1462", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1462", }, { cve: "CVE-2022-1466", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1466", }, { cve: "CVE-2022-1471", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1471", }, { cve: "CVE-2022-1586", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1586", }, { cve: "CVE-2022-1587", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1587", }, { cve: "CVE-2022-1616", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1616", }, { cve: "CVE-2022-1619", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1619", }, { cve: "CVE-2022-1620", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1620", }, { cve: "CVE-2022-1679", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1679", }, { cve: "CVE-2022-1705", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1705", }, { cve: "CVE-2022-1720", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1720", }, { cve: "CVE-2022-1729", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1729", }, { cve: "CVE-2022-1733", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1733", }, { cve: "CVE-2022-1735", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1735", }, { cve: "CVE-2022-1771", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1771", }, { cve: "CVE-2022-1785", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1785", }, { cve: "CVE-2022-1796", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1796", }, { cve: "CVE-2022-1851", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1851", }, { cve: "CVE-2022-1897", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1897", }, { cve: "CVE-2022-1898", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1898", }, { cve: "CVE-2022-1927", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1927", }, { cve: "CVE-2022-1962", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1962", }, { cve: "CVE-2022-1968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1968", }, { cve: "CVE-2022-1974", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1974", }, { cve: "CVE-2022-1975", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-1975", }, { cve: "CVE-2022-20132", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20132", }, { cve: "CVE-2022-20141", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20141", }, { cve: "CVE-2022-20154", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20154", }, { cve: "CVE-2022-20166", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20166", }, { cve: "CVE-2022-20368", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20368", }, { cve: "CVE-2022-20369", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20369", }, { cve: "CVE-2022-2047", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2047", }, { cve: "CVE-2022-2048", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2048", }, { cve: "CVE-2022-20567", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-20567", }, { cve: "CVE-2022-2068", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2068", }, { cve: "CVE-2022-2097", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2097", }, { cve: "CVE-2022-21216", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21216", }, { cve: "CVE-2022-21233", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21233", }, { cve: "CVE-2022-2124", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2124", }, { cve: "CVE-2022-2125", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2125", }, { cve: "CVE-2022-2126", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2126", }, { cve: "CVE-2022-2129", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2129", }, { cve: "CVE-2022-21363", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21363", }, { cve: "CVE-2022-21385", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21385", }, { cve: "CVE-2022-21499", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21499", }, { cve: "CVE-2022-2153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2153", }, { cve: "CVE-2022-21540", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21540", }, { cve: "CVE-2022-21541", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21541", }, { cve: "CVE-2022-21549", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21549", }, { cve: "CVE-2022-21618", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21618", }, { cve: "CVE-2022-21619", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21619", }, { cve: "CVE-2022-21624", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21624", }, { cve: "CVE-2022-21626", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21626", }, { cve: "CVE-2022-21628", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21628", }, { cve: "CVE-2022-21702", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-21702", }, { cve: "CVE-2022-2175", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2175", }, { cve: "CVE-2022-2182", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2182", }, { cve: "CVE-2022-2183", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2183", }, { cve: "CVE-2022-2206", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2206", }, { cve: "CVE-2022-2207", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2207", }, { cve: "CVE-2022-2208", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2208", }, { cve: "CVE-2022-2210", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2210", }, { cve: "CVE-2022-2231", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2231", }, { cve: "CVE-2022-2256", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2256", }, { cve: "CVE-2022-2257", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2257", }, { cve: "CVE-2022-2264", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2264", }, { cve: "CVE-2022-2284", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2284", }, { cve: "CVE-2022-2285", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2285", }, { cve: "CVE-2022-2286", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2286", }, { cve: "CVE-2022-2287", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2287", }, { cve: "CVE-2022-22976", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-22976", }, { cve: "CVE-2022-22978", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-22978", }, { cve: "CVE-2022-2304", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2304", }, { cve: "CVE-2022-2318", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2318", }, { cve: "CVE-2022-23302", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23302", }, { cve: "CVE-2022-23305", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23305", }, { cve: "CVE-2022-23307", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23307", }, { cve: "CVE-2022-2343", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2343", }, { cve: "CVE-2022-2344", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2344", }, { cve: "CVE-2022-2345", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2345", }, { cve: "CVE-2022-23471", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23471", }, { cve: "CVE-2022-23521", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23521", }, { cve: "CVE-2022-23772", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23772", }, { cve: "CVE-2022-23773", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-23773", }, { cve: "CVE-2022-24302", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24302", }, { cve: "CVE-2022-24329", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24329", }, { cve: "CVE-2022-24823", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24823", }, { cve: "CVE-2022-24903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-24903", }, { cve: "CVE-2022-2503", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2503", }, { cve: "CVE-2022-25147", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25147", }, { cve: "CVE-2022-25168", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25168", }, { cve: "CVE-2022-2519", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2519", }, { cve: "CVE-2022-2520", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2520", }, { cve: "CVE-2022-2521", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2521", }, { cve: "CVE-2022-2522", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2522", }, { cve: "CVE-2022-25647", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25647", }, { cve: "CVE-2022-2571", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2571", }, { cve: "CVE-2022-2580", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2580", }, { cve: "CVE-2022-2581", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2581", }, { cve: "CVE-2022-25857", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-25857", }, { cve: "CVE-2022-2588", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2588", }, { cve: "CVE-2022-2598", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2598", }, { cve: "CVE-2022-26148", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26148", }, { cve: "CVE-2022-26365", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26365", }, { cve: "CVE-2022-26373", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26373", }, { cve: "CVE-2022-2639", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2639", }, { cve: "CVE-2022-26612", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-26612", }, { cve: "CVE-2022-2663", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2663", }, { cve: "CVE-2022-27781", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-27781", }, { cve: "CVE-2022-27782", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-27782", }, { cve: "CVE-2022-27943", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-27943", }, { cve: "CVE-2022-2795", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2795", }, { cve: "CVE-2022-28131", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28131", }, { cve: "CVE-2022-2816", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2816", }, { cve: "CVE-2022-2817", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2817", }, { cve: "CVE-2022-2819", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2819", }, { cve: "CVE-2022-28327", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28327", }, { cve: "CVE-2022-2845", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2845", }, { cve: "CVE-2022-2849", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2849", }, { cve: "CVE-2022-2862", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2862", }, { cve: "CVE-2022-2867", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2867", }, { cve: "CVE-2022-2868", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2868", }, { cve: "CVE-2022-2869", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2869", }, { cve: "CVE-2022-28693", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28693", }, { cve: "CVE-2022-2874", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2874", }, { cve: "CVE-2022-28748", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-28748", }, { cve: "CVE-2022-2880", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2880", }, { cve: "CVE-2022-2889", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2889", }, { cve: "CVE-2022-29162", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29162", }, { cve: "CVE-2022-29187", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29187", }, { cve: "CVE-2022-2923", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2923", }, { cve: "CVE-2022-2946", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2946", }, { cve: "CVE-2022-29526", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29526", }, { cve: "CVE-2022-29583", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29583", }, { cve: "CVE-2022-2964", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2964", }, { cve: "CVE-2022-2977", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2977", }, { cve: "CVE-2022-2980", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2980", }, { cve: "CVE-2022-2982", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2982", }, { cve: "CVE-2022-29900", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29900", }, { cve: "CVE-2022-29901", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-29901", }, { cve: "CVE-2022-2991", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-2991", }, { cve: "CVE-2022-3016", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3016", }, { cve: "CVE-2022-3028", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3028", }, { cve: "CVE-2022-3037", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3037", }, { cve: "CVE-2022-30580", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30580", }, { cve: "CVE-2022-30630", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30630", }, { cve: "CVE-2022-30631", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30631", }, { cve: "CVE-2022-30632", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30632", }, { cve: "CVE-2022-30633", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-30633", }, { cve: "CVE-2022-3099", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3099", }, { cve: "CVE-2022-31030", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-31030", }, { cve: "CVE-2022-31159", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-31159", }, { cve: "CVE-2022-3134", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3134", }, { cve: "CVE-2022-3153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3153", }, { cve: "CVE-2022-3169", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3169", }, { cve: "CVE-2022-31690", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-31690", }, { cve: "CVE-2022-32148", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32148", }, { cve: "CVE-2022-32149", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32149", }, { cve: "CVE-2022-32206", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32206", }, { cve: "CVE-2022-32208", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32208", }, { cve: "CVE-2022-32221", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-32221", }, { cve: "CVE-2022-3234", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3234", }, { cve: "CVE-2022-3235", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3235", }, { cve: "CVE-2022-3239", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3239", }, { cve: "CVE-2022-3278", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3278", }, { cve: "CVE-2022-3296", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3296", }, { cve: "CVE-2022-3297", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3297", }, { cve: "CVE-2022-33196", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33196", }, { cve: "CVE-2022-3324", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3324", }, { cve: "CVE-2022-3352", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3352", }, { cve: "CVE-2022-33740", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33740", }, { cve: "CVE-2022-33741", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33741", }, { cve: "CVE-2022-33742", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33742", }, { cve: "CVE-2022-33972", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33972", }, { cve: "CVE-2022-33981", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-33981", }, { cve: "CVE-2022-34169", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34169", }, { cve: "CVE-2022-3424", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3424", }, { cve: "CVE-2022-34266", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34266", }, { cve: "CVE-2022-34526", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34526", }, { cve: "CVE-2022-34903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-34903", }, { cve: "CVE-2022-3491", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3491", }, { cve: "CVE-2022-3515", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3515", }, { cve: "CVE-2022-3520", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3520", }, { cve: "CVE-2022-3521", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3521", }, { cve: "CVE-2022-3524", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3524", }, { cve: "CVE-2022-35252", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-35252", }, { cve: "CVE-2022-3542", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3542", }, { cve: "CVE-2022-3545", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3545", }, { cve: "CVE-2022-3564", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3564", }, { cve: "CVE-2022-3565", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3565", }, { cve: "CVE-2022-3566", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3566", }, { cve: "CVE-2022-3567", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3567", }, { cve: "CVE-2022-35737", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-35737", }, { cve: "CVE-2022-3586", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3586", }, { cve: "CVE-2022-3591", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3591", }, { cve: "CVE-2022-3594", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3594", }, { cve: "CVE-2022-3597", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3597", }, { cve: "CVE-2022-3599", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3599", }, { cve: "CVE-2022-36109", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36109", }, { cve: "CVE-2022-3621", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3621", }, { cve: "CVE-2022-3626", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3626", }, { cve: "CVE-2022-3627", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3627", }, { cve: "CVE-2022-3628", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3628", }, { cve: "CVE-2022-36280", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36280", }, { cve: "CVE-2022-3629", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3629", }, { cve: "CVE-2022-3635", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3635", }, { cve: "CVE-2022-3643", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3643", }, { cve: "CVE-2022-36437", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36437", }, { cve: "CVE-2022-3646", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3646", }, { cve: "CVE-2022-3649", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3649", }, { cve: "CVE-2022-36760", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36760", }, { cve: "CVE-2022-36879", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36879", }, { cve: "CVE-2022-36946", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-36946", }, { cve: "CVE-2022-3705", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3705", }, { cve: "CVE-2022-37434", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37434", }, { cve: "CVE-2022-37436", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37436", }, { cve: "CVE-2022-37865", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37865", }, { cve: "CVE-2022-37866", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-37866", }, { cve: "CVE-2022-38090", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38090", }, { cve: "CVE-2022-38096", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38096", }, { cve: "CVE-2022-38126", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38126", }, { cve: "CVE-2022-38127", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38127", }, { cve: "CVE-2022-38177", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38177", }, { cve: "CVE-2022-38178", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38178", }, { cve: "CVE-2022-3821", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3821", }, { cve: "CVE-2022-38533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38533", }, { cve: "CVE-2022-38749", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38749", }, { cve: "CVE-2022-38750", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38750", }, { cve: "CVE-2022-38751", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38751", }, { cve: "CVE-2022-38752", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-38752", }, { cve: "CVE-2022-39028", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-39028", }, { cve: "CVE-2022-3903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3903", }, { cve: "CVE-2022-39188", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-39188", }, { cve: "CVE-2022-39399", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-39399", }, { cve: "CVE-2022-3970", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-3970", }, { cve: "CVE-2022-40149", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40149", }, { cve: "CVE-2022-40150", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40150", }, { cve: "CVE-2022-40151", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40151", }, { cve: "CVE-2022-40152", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40152", }, { cve: "CVE-2022-40153", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40153", }, { cve: "CVE-2022-40303", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40304", }, { cve: "CVE-2022-40307", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40307", }, { cve: "CVE-2022-40674", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40674", }, { cve: "CVE-2022-40768", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40768", }, { cve: "CVE-2022-40899", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-40899", }, { cve: "CVE-2022-4095", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4095", }, { cve: "CVE-2022-41218", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41218", }, { cve: "CVE-2022-4129", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4129", }, { cve: "CVE-2022-4141", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4141", }, { cve: "CVE-2022-41717", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41717", }, { cve: "CVE-2022-41721", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41721", }, { cve: "CVE-2022-41848", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41848", }, { cve: "CVE-2022-41850", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41850", }, { cve: "CVE-2022-41854", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41854", }, { cve: "CVE-2022-41858", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41858", }, { cve: "CVE-2022-41881", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41881", }, { cve: "CVE-2022-41903", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41903", }, { cve: "CVE-2022-41915", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41915", }, { cve: "CVE-2022-41966", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41966", }, { cve: "CVE-2022-41974", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-41974", }, { cve: "CVE-2022-42003", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42003", }, { cve: "CVE-2022-42004", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42004", }, { cve: "CVE-2022-42010", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42010", }, { cve: "CVE-2022-42011", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42011", }, { cve: "CVE-2022-42012", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42012", }, { cve: "CVE-2022-42328", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42328", }, { cve: "CVE-2022-42329", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42329", }, { cve: "CVE-2022-42703", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42703", }, { cve: "CVE-2022-42889", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42889", }, { cve: "CVE-2022-42895", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42895", }, { cve: "CVE-2022-42896", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42896", }, { cve: "CVE-2022-42898", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42898", }, { cve: "CVE-2022-4292", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4292", }, { cve: "CVE-2022-4293", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4293", }, { cve: "CVE-2022-42969", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-42969", }, { cve: "CVE-2022-4304", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4304", }, { cve: "CVE-2022-43552", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43552", }, { cve: "CVE-2022-43680", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43680", }, { cve: "CVE-2022-43750", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43750", }, { cve: "CVE-2022-4378", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4378", }, { cve: "CVE-2022-43945", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43945", }, { cve: "CVE-2022-43995", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-43995", }, { cve: "CVE-2022-4415", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4415", }, { cve: "CVE-2022-4450", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4450", }, { cve: "CVE-2022-44638", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-44638", }, { cve: "CVE-2022-45061", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45061", }, { cve: "CVE-2022-45688", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45688", }, { cve: "CVE-2022-45884", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45884", }, { cve: "CVE-2022-45885", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45885", }, { cve: "CVE-2022-45886", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45886", }, { cve: "CVE-2022-45887", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45887", }, { cve: "CVE-2022-45919", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45919", }, { cve: "CVE-2022-45934", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45934", }, { cve: "CVE-2022-45939", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-45939", }, { cve: "CVE-2022-4662", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-4662", }, { cve: "CVE-2022-46751", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-46751", }, { cve: "CVE-2022-46908", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-46908", }, { cve: "CVE-2022-47629", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-47629", }, { cve: "CVE-2022-47929", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-47929", }, { cve: "CVE-2022-48281", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-48281", }, { cve: "CVE-2022-48337", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-48337", }, { cve: "CVE-2022-48339", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2022-48339", }, { cve: "CVE-2023-0045", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0045", }, { cve: "CVE-2023-0049", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0049", }, { cve: "CVE-2023-0051", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0051", }, { cve: "CVE-2023-0054", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0054", }, { cve: "CVE-2023-0215", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0215", }, { cve: "CVE-2023-0286", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0286", }, { cve: "CVE-2023-0288", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0288", }, { cve: "CVE-2023-0433", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0433", }, { cve: "CVE-2023-0464", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0466", }, { cve: "CVE-2023-0512", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0512", }, { cve: "CVE-2023-0590", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0590", }, { cve: "CVE-2023-0597", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0597", }, { cve: "CVE-2023-0833", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-0833", }, { cve: "CVE-2023-1076", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1076", }, { cve: "CVE-2023-1095", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1095", }, { cve: "CVE-2023-1118", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1118", }, { cve: "CVE-2023-1127", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1127", }, { cve: "CVE-2023-1170", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1170", }, { cve: "CVE-2023-1175", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1175", }, { cve: "CVE-2023-1370", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1370", }, { cve: "CVE-2023-1380", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1380", }, { cve: "CVE-2023-1390", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1390", }, { cve: "CVE-2023-1436", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1436", }, { cve: "CVE-2023-1513", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1513", }, { cve: "CVE-2023-1611", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1611", }, { cve: "CVE-2023-1670", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1670", }, { cve: "CVE-2023-1855", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1855", }, { cve: "CVE-2023-1989", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1989", }, { cve: "CVE-2023-1990", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1990", }, { cve: "CVE-2023-1998", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-1998", }, { cve: "CVE-2023-20862", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-20862", }, { cve: "CVE-2023-2124", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2124", }, { cve: "CVE-2023-2162", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2162", }, { cve: "CVE-2023-2176", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2176", }, { cve: "CVE-2023-21830", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21830", }, { cve: "CVE-2023-21835", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21835", }, { cve: "CVE-2023-21843", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21843", }, { cve: "CVE-2023-21930", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21930", }, { cve: "CVE-2023-21937", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21937", }, { cve: "CVE-2023-21938", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21938", }, { cve: "CVE-2023-21939", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21939", }, { cve: "CVE-2023-2194", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2194", }, { cve: "CVE-2023-21954", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21954", }, { cve: "CVE-2023-21967", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21967", }, { cve: "CVE-2023-21968", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-21968", }, { cve: "CVE-2023-22490", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-22490", }, { cve: "CVE-2023-2253", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2253", }, { cve: "CVE-2023-22809", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-22809", }, { cve: "CVE-2023-23454", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23454", }, { cve: "CVE-2023-23455", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23455", }, { cve: "CVE-2023-23559", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23559", }, { cve: "CVE-2023-23916", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23916", }, { cve: "CVE-2023-23946", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-23946", }, { cve: "CVE-2023-24329", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24329", }, { cve: "CVE-2023-24532", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24532", }, { cve: "CVE-2023-24534", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24534", }, { cve: "CVE-2023-2483", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2483", }, { cve: "CVE-2023-24998", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-24998", }, { cve: "CVE-2023-2513", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2513", }, { cve: "CVE-2023-25193", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25193", }, { cve: "CVE-2023-25652", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25652", }, { cve: "CVE-2023-25690", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25690", }, { cve: "CVE-2023-25809", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25809", }, { cve: "CVE-2023-25815", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-25815", }, { cve: "CVE-2023-26048", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26048", }, { cve: "CVE-2023-26049", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26049", }, { cve: "CVE-2023-2650", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2650", }, { cve: "CVE-2023-26545", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26545", }, { cve: "CVE-2023-26604", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-26604", }, { cve: "CVE-2023-27533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27533", }, { cve: "CVE-2023-27534", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27534", }, { cve: "CVE-2023-27535", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27535", }, { cve: "CVE-2023-27536", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27536", }, { cve: "CVE-2023-27538", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27538", }, { cve: "CVE-2023-27561", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-27561", }, { cve: "CVE-2023-2828", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2828", }, { cve: "CVE-2023-28320", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28320", }, { cve: "CVE-2023-28321", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28321", }, { cve: "CVE-2023-28322", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28322", }, { cve: "CVE-2023-28328", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28328", }, { cve: "CVE-2023-28464", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28464", }, { cve: "CVE-2023-28486", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28486", }, { cve: "CVE-2023-28487", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28487", }, { cve: "CVE-2023-28642", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28642", }, { cve: "CVE-2023-28772", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28772", }, { cve: "CVE-2023-28840", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28840", }, { cve: "CVE-2023-28841", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28841", }, { cve: "CVE-2023-28842", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-28842", }, { cve: "CVE-2023-29007", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29007", }, { cve: "CVE-2023-29383", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29383", }, { cve: "CVE-2023-29402", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29402", }, { cve: "CVE-2023-29406", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29406", }, { cve: "CVE-2023-29409", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-29409", }, { cve: "CVE-2023-2976", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-2976", }, { cve: "CVE-2023-30630", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-30630", }, { cve: "CVE-2023-30772", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-30772", }, { cve: "CVE-2023-31084", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-31084", }, { cve: "CVE-2023-3138", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-3138", }, { cve: "CVE-2023-31436", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-31436", }, { cve: "CVE-2023-31484", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-31484", }, { cve: "CVE-2023-32269", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-32269", }, { cve: "CVE-2023-32697", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-32697", }, { cve: "CVE-2023-33264", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-33264", }, { cve: "CVE-2023-34034", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34034", }, { cve: "CVE-2023-34035", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34035", }, { cve: "CVE-2023-34453", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34453", }, { cve: "CVE-2023-34454", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34454", }, { cve: "CVE-2023-34455", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34455", }, { cve: "CVE-2023-34462", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-34462", }, { cve: "CVE-2023-35116", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-35116", }, { cve: "CVE-2023-3635", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-3635", }, { cve: "CVE-2023-36479", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-36479", }, { cve: "CVE-2023-39533", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-39533", }, { cve: "CVE-2023-40167", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-40167", }, { cve: "CVE-2023-40217", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-40217", }, { cve: "CVE-2023-41105", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-41105", }, { cve: "CVE-2023-41900", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-41900", }, { cve: "CVE-2023-43642", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-43642", }, { cve: "CVE-2023-43804", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-43804", }, { cve: "CVE-2023-44487", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-44487", }, { cve: "CVE-2023-45803", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2023-45803", }, { cve: "CVE-2024-21626", notes: [ { category: "description", text: "In Dell ECS existieren mehrere Schwachstellen. Diese bestehen in diversen Komponenten von Drittanbietern. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.", }, ], product_status: { known_affected: [ "T033919", ], }, release_date: "2024-04-04T22:00:00.000+00:00", title: "CVE-2024-21626", }, ], }
pysec-2020-92
Vulnerability from pysec
Published
2020-12-09 07:15
Modified
2021-01-05 03:15
Details
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.
Impacted products
| Name | purl |
|---|---|
| py | pkg:pypi/py |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "py", purl: "pkg:pypi/py", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "1.10.0", }, ], type: "ECOSYSTEM", }, ], versions: [ "0.8.0-alpha2", "0.9.0", "0.9.1", "0.9.2", "1.0.0", "1.0.1", "1.0.2", "1.1.0", "1.1.1", "1.2.0", "1.2.1", "1.3.0", "1.3.1", "1.3.2", "1.3.3", "1.3.4", "1.4.0", "1.4.1", "1.4.2", "1.4.3", "1.4.4", "1.4.5", "1.4.6", "1.4.7.dev3", "1.4.7", "1.4.8", "1.4.9", "1.4.10", "1.4.11", "1.4.12", "1.4.13", "1.4.14", "1.4.15", "1.4.16", "1.4.17", "1.4.18", "1.4.19", "1.4.20", "1.4.21", "1.4.22", "1.4.23", "1.4.24", "1.4.25", "1.4.26", "1.4.27", "1.4.28", "1.4.29", "1.4.30", "1.4.31", "1.4.32.dev1", "1.4.32", "1.4.33", "1.4.34", "1.5.1", "1.5.2", "1.5.3", "1.5.4", "1.6.0", "1.7.0", "1.8.0", "1.8.1", "1.8.2", "1.9.0", ], }, ], aliases: [ "CVE-2020-29651", "GHSA-hj5v-574p-mj7c", ], details: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", id: "PYSEC-2020-92", modified: "2021-01-05T03:15:00Z", published: "2020-12-09T07:15:00Z", references: [ { type: "WEB", url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { type: "REPORT", url: "https://github.com/pytest-dev/py/issues/256", }, { type: "WEB", url: "https://github.com/pytest-dev/py/pull/257", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-hj5v-574p-mj7c", }, ], }
ghsa-hj5v-574p-mj7c
Vulnerability from github
Published
2021-04-20 16:39
Modified
2024-10-21 21:03
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
8.7 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
8.7 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Summary
py vulnerable to Regular Expression Denial of Service
Details
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.
{ affected: [ { package: { ecosystem: "PyPI", name: "py", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "1.10.0", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2020-29651", ], database_specific: { cwe_ids: [ "CWE-400", ], github_reviewed: true, github_reviewed_at: "2021-04-09T21:17:48Z", nvd_published_at: "2020-12-09T07:15:00Z", severity: "HIGH", }, details: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", id: "GHSA-hj5v-574p-mj7c", modified: "2024-10-21T21:03:12Z", published: "2021-04-20T16:39:57Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-29651", }, { type: "WEB", url: "https://github.com/pytest-dev/py/issues/256", }, { type: "WEB", url: "https://github.com/pytest-dev/py/pull/257", }, { type: "WEB", url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-hj5v-574p-mj7c", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/py/PYSEC-2020-92.yaml", }, { type: "PACKAGE", url: "https://github.com/pytest-dev/py", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR", }, { type: "WEB", url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", type: "CVSS_V3", }, { score: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", type: "CVSS_V4", }, ], summary: "py vulnerable to Regular Expression Denial of Service", }
fkie_cve-2020-29651
Vulnerability from fkie_nvd
Published
2020-12-09 07:15
Modified
2024-11-21 05:24
Severity ?
Summary
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| pytest | py | * | |
| fedoraproject | fedora | 32 | |
| fedoraproject | fedora | 33 | |
| oracle | zfs_storage_appliance_kit | 8.8 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:pytest:py:*:*:*:*:*:*:*:*", matchCriteriaId: "ECA167BF-7091-4A60-A971-78A3837D3D91", versionEndIncluding: "1.9.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", matchCriteriaId: "36D96259-24BD-44E2-96D9-78CE1D41F956", vulnerable: true, }, { criteria: "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*", matchCriteriaId: "E460AA51-FCDA-46B9-AE97-E6676AA5E194", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*", matchCriteriaId: "D3E503FB-6279-4D4A-91D8-E237ECF9D2B0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.", }, { lang: "es", value: "Una denegación de servicio por medio de una expresión regular en el componente py.path.svnwc de py (también se conoce como python-py) versiones hasta 1.9.0, podría ser usada por atacantes para causar un ataque de denegación de servicio del compute-time al suministrar una entrada maliciosa en la funcionalidad blame", }, ], id: "CVE-2020-29651", lastModified: "2024-11-21T05:24:21.253", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2020-12-09T07:15:12.533", references: [ { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/issues/256", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/pull/257", }, { source: "cve@mitre.org", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { source: "cve@mitre.org", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { source: "cve@mitre.org", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/issues/256", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/pull/257", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/security-alerts/cpujul2022.html", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.