Difference between revisions of "SecurityAdvisories/Essex"
Line 10: | Line 10: | ||
| Impact | | Impact | ||
|- | |- | ||
− | | Nova | + | |rowspan=2 |Nova |
− | | July 3, 2012 | + | |rowspan=2 |July 3, 2012 |
+ | |rowspan=2 |[https://lists.launchpad.net/openstack/msg14089.html 2012-008] | ||
+ | | [https://bugs.launchpad.net/bugs/cve/2012-3360 2012-3360] | ||
+ | |rowspan=2 |Arbitrary file injection/corruption through directory traversal issues | ||
+ | |rowspan=2 |Critial | ||
|- | |- | ||
− | |||
− | |||
− | |||
− | |||
|} | |} | ||
Revision as of 06:55, 4 July 2012
Essex Security Advisories
Product | Date | Openstack Security Advisory | CVE Number | Title | Impact |
Nova | July 3, 2012 | 2012-008 | 2012-3360 | Arbitrary file injection/corruption through directory traversal issues | Critial |
Fixed in 2012.1.1
Product | Date | Openstack Security Advisory | CVE Number | Title | Impact |
Horizon | April 17, 2012 | 2012-004 | 2012-2094 | XSS vulnerability in Horizon log viewer | High |
Nova | April 19, 2012 | 2012-005 | 2012-2101 | No quota enforced on security group rules | High |
Horizon | May 4, 2012 | 2012-006 | 2012-2144 | Horizon session fixation and reuse | Critical |
Nova | June 6, 2012 | 2012-007 | 2012-2654 | Security groups fail to be set correctly | Medium |