Download
| Alert*
|
oval:org.secpod.oval:def:1600472
cloud-init is installed oval:org.secpod.oval:def:605186 cloud-init is installed oval:org.secpod.oval:def:1600471 It was discovered that cloud-init in the Amazon Linux AMI wrote IAM role credentials from the instance metadata service to files readable by the root user in /var/lib/cloud. An application with root privileges, a container with access to the relevant files, or a root user of an AMI derived from a pr ... oval:org.secpod.oval:def:67989 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. Security Fix: * cloud-init: Use of random.choice when generating random password * ... oval:org.secpod.oval:def:504736 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. Security Fix: * cloud-init: Use of random.choice when generating random password * ... oval:org.secpod.oval:def:502167 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts. A denial of service flaw was found in the way Python"s SSL module implementation perf ... oval:org.secpod.oval:def:112199 Cloud-init is a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts. oval:org.secpod.oval:def:88549 cloud-init: initialization and customization tool for cloud instances cloud-init could be made to expose sensitive information. oval:org.secpod.oval:def:506287 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. Security Fix: * cloud-init: randomly generated passwords logged in clear-text to wor ... oval:org.secpod.oval:def:4500051 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. For more details about the security issue, including the impact, a CVSS score, ackno ... oval:org.secpod.oval:def:205174 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. Security Fix: * cloud-init: extra ssh keys added to authorized_keys on the Azure pla ... oval:org.secpod.oval:def:1505056 [20.3-10.0.1] - Added missing services in rhel/systemd/cloud-init.service [Orabug: 32183938] - Added missing services in cloud-init.service.tmpl for sshd [Orabug: 32183938] - Forward port applicable cloud-init 18.4-2.0.3 changes to cloud-init-18-5 [Orabug: 30435672] - limit permissions [Orabug: 3135 ... oval:org.secpod.oval:def:2500359 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. oval:org.secpod.oval:def:502627 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. Security Fix: * cloud-init: extra ssh keys added to authorized_keys on the Azure pla ... oval:org.secpod.oval:def:1502465 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:205627 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. The following packages have been upgraded to a later upstream version: cloud-init . ... oval:org.secpod.oval:def:2004226 In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords. oval:org.secpod.oval:def:2004225 cloud-init through 19.4 relies on Mersenne Twister for a random password, which makes it easier for attackers to predict passwords, because rand_str in cloudinit/util.py calls the random.choice function. oval:org.secpod.oval:def:93874 cloud-init: initialization and customization tool for cloud instances Details: USN-6042-1 fixed a vulnerability in Cloud-init. The update introduced a regression on Linux Mint 20.x LTS resulting in a possible loss of networking. This update fixes the problem. We apologize for the inconvenience. Orig ... oval:org.secpod.oval:def:2501219 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. oval:org.secpod.oval:def:708110 cloud-init: initialization and customization tool for cloud instances cloud-init could write sensitive information to logs. oval:org.secpod.oval:def:125486 Cloud-init is a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts. oval:org.secpod.oval:def:2600428 The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. oval:org.secpod.oval:def:19500217 Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege |
