Difference between revisions of "SecurityAdvisories/Essex"
Line 13: | Line 13: | ||
| April 17, 2012 | | April 17, 2012 | ||
| [https://lists.launchpad.net/openstack/msg10211.html 2012-004] | | [https://lists.launchpad.net/openstack/msg10211.html 2012-004] | ||
− | | 2012-2094 | + | | [https://bugs.launchpad.net/bugs/cve/2012-2094 2012-2094] |
| XSS vulnerability in Horizon log viewer | | XSS vulnerability in Horizon log viewer | ||
| High | | High | ||
Line 20: | Line 20: | ||
| April 19, 2012 | | April 19, 2012 | ||
| [https://lists.launchpad.net/openstack/msg10268.html 2012-005] | | [https://lists.launchpad.net/openstack/msg10268.html 2012-005] | ||
− | | 2012-2101 | + | | [https://bugs.launchpad.net/bugs/cve/2012-2101 2012-2101] |
| No quota enforced on security group rules | | No quota enforced on security group rules | ||
| High | | High | ||
Line 27: | Line 27: | ||
| May 4, 2012 | | May 4, 2012 | ||
| [https://lists.launchpad.net/openstack/msg11263.html 2012-006] | | [https://lists.launchpad.net/openstack/msg11263.html 2012-006] | ||
− | | 2012-2144 | + | | [https://bugs.launchpad.net/bugs/cve/2012-2144 2012-2144] |
| Horizon session fixation and reuse | | Horizon session fixation and reuse | ||
| Critical | | Critical | ||
Line 34: | Line 34: | ||
| June 6, 2012 | | June 6, 2012 | ||
| [https://lists.launchpad.net/openstack/msg12883.html 2012-007] | | [https://lists.launchpad.net/openstack/msg12883.html 2012-007] | ||
− | | 2012-2654 | + | | [https://bugs.launchpad.net/bugs/cve/2012-2654 2012-2654] |
| Security groups fail to be set correctly | | Security groups fail to be set correctly | ||
| Medium | | Medium |
Revision as of 08:22, 22 June 2012
Essex Security Advisories
Product | Date | Openstack Security Advisory | CVE Number | Title | Impact |
Horizon | April 17, 2012 | 2012-004 | 2012-2094 | XSS vulnerability in Horizon log viewer | High |
Nova | April 19, 2012 | 2012-005 | 2012-2101 | No quota enforced on security group rules | High |
Horizon | May 4, 2012 | 2012-006 | 2012-2144 | Horizon session fixation and reuse | Critical |
Nova | June 6, 2012 | 2012-007 | 2012-2654 | Security groups fail to be set correctly | Medium |