Jump to: navigation, search

Difference between revisions of "SecurityAdvisories/Essex"

Line 17: Line 17:
 
|rowspan=2 |Critial
 
|rowspan=2 |Critial
 
|-
 
|-
 +
|-
 +
| Nova
 +
| July 11, 2012
 +
| [https://lists.launchpad.net/openstack/msg14452.html 2012-009]
 +
| [https://bugs.launchpad.net/bugs/cve/2012-3371 2012-3371]
 +
| Scheduler denial of service through scheduler_hints
 +
| Medium
 
|}
 
|}
  

Revision as of 08:11, 12 July 2012

Essex Security Advisories

Product Date Openstack Security Advisory CVE Number Title Impact
Nova July 3, 2012 2012-008 2012-3360 Arbitrary file injection/corruption through directory traversal issues Critial
Nova July 11, 2012 2012-009 2012-3371 Scheduler denial of service through scheduler_hints Medium

Fixed in 2012.1.1

See ReleaseNotes/2012.1.1

Product Date Openstack Security Advisory CVE Number Title Impact
Horizon April 17, 2012 2012-004 2012-2094 XSS vulnerability in Horizon log viewer High
Nova April 19, 2012 2012-005 2012-2101 No quota enforced on security group rules High
Horizon May 4, 2012 2012-006 2012-2144 Horizon session fixation and reuse Critical
Nova June 6, 2012 2012-007 2012-2654 Security groups fail to be set correctly Medium
Retrieved from "https://wiki.openstack.org/w/index.php?title=SecurityAdvisories/Essex&oldid=11794"