Difference between revisions of "SecurityAdvisories/Diablo"
Line 1: | Line 1: | ||
__NOTOC__ | __NOTOC__ | ||
− | = | + | = Diablo Security Advisories = |
{| border="1" cellpadding="2" cellspacing="0" | {| border="1" cellpadding="2" cellspacing="0" | ||
Line 13: | Line 13: | ||
| 2011-4596 | | 2011-4596 | ||
| Path traversal issues registering malicious images using EC2 API | | Path traversal issues registering malicious images using EC2 API | ||
+ | | High | ||
+ | |- | ||
+ | | Nova | ||
+ | | [https://lists.launchpad.net/openstack/msg06648.html 2012-001] | ||
+ | | 2012-0030 | ||
+ | | Tenant bypass by authenticated users using [[OpenStack]] API | ||
+ | | Critical | ||
+ | |- | ||
+ | | Keystone | ||
+ | | [https://lists.launchpad.net/openstack/msg09193.html 2012-002] | ||
+ | | 2012-1572 | ||
+ | | Extremely long passwords can crash Keystone | ||
+ | | High | ||
+ | |- | ||
+ | | Nova | ||
+ | | [https://lists.launchpad.net/openstack/msg09311.html 2012-003] | ||
+ | | 2012-1585 | ||
+ | | Long server names grow nova-api log files significantly | ||
| High | | High |
Revision as of 06:41, 16 May 2012
Diablo Security Advisories
Product | Openstack Security Advisory | CVE Number | Title | Impact |
Nova | 2011-001 | 2011-4596 | Path traversal issues registering malicious images using EC2 API | High |
Nova | 2012-001 | 2012-0030 | Tenant bypass by authenticated users using OpenStack API | Critical |
Keystone | 2012-002 | 2012-1572 | Extremely long passwords can crash Keystone | High |
Nova | 2012-003 | 2012-1585 | Long server names grow nova-api log files significantly | High |