Download
| Alert*
oval:org.secpod.oval:def:610370
Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in Glance, the OpenStack image registry and delivery service, may result in information disclosure. oval:org.secpod.oval:def:610369 Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in Cinder, the OpenStack block storage system, may result in information disclosure. oval:org.secpod.oval:def:610368 Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in OpenStack Compute may result in information disclosure. oval:org.secpod.oval:def:89442 nova: OpenStack Compute cloud infrastructure Nova could be made to expose sensitive information. oval:org.secpod.oval:def:707920 nova: OpenStack Compute cloud infrastructure Nova could be made to expose sensitive information. oval:org.secpod.oval:def:707942 cinder: OpenStack storage service Details: USN-5835-1 fixed vulnerabilities in Cinder. This update provides the corresponding updates for Ubuntu 18.04 LTS. In addition, a regression was fixed for Ubuntu 20.04 LTS. Original advisory Cinder could be made to expose sensitive information. oval:org.secpod.oval:def:89440 cinder: OpenStack storage service Cinder could be made to expose sensitive information. oval:org.secpod.oval:def:89441 glance: OpenStack Image Registry and Delivery Service OpenStack Glance could be made to expose sensitive information. oval:org.secpod.oval:def:707919 cinder: OpenStack storage service Cinder could be made to expose sensitive information. oval:org.secpod.oval:def:707917 glance: OpenStack Image Registry and Delivery Service OpenStack Glance could be made to expose sensitive information. oval:org.secpod.oval:def:89338 Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in OpenStack Compute may result in information disclosure. oval:org.secpod.oval:def:89339 Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in Cinder, the OpenStack block storage system, may result in information disclosure. oval:org.secpod.oval:def:707936 nova: OpenStack Compute cloud infrastructure Details: USN-5835-3 fixed vulnerabilities in Nova. This update provides the corresponding updates for Ubuntu 18.04 LTS. Original advisory Nova could be made to expose sensitive information. oval:org.secpod.oval:def:89337 Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in Glance, the OpenStack image registry and delivery service, may result in information disclosure. |