Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-5311 (GCVE-0-2020-5311)
Vulnerability from cvelistv5
Published
2020-01-03 00:52
Modified
2024-08-04 08:22
Severity ?
EPSS score ?
Summary
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T08:22:09.146Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { name: "FEDORA-2020-df444e464e", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { name: "USN-4272-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "https://usn.ubuntu.com/4272-1/", }, { name: "RHSA-2020:0566", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { name: "FEDORA-2020-5cdbb19cca", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { name: "DSA-4631", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2020/dsa-4631", }, { name: "RHSA-2020:0580", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2020-02-24T16:06:07", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { tags: [ "x_refsource_MISC", ], url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { name: "FEDORA-2020-df444e464e", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { name: "USN-4272-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "https://usn.ubuntu.com/4272-1/", }, { name: "RHSA-2020:0566", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { name: "FEDORA-2020-5cdbb19cca", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { name: "DSA-4631", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2020/dsa-4631", }, { name: "RHSA-2020:0580", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-5311", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", refsource: "MISC", url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { name: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", refsource: "MISC", url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { name: "FEDORA-2020-df444e464e", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { name: "USN-4272-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/4272-1/", }, { name: "RHSA-2020:0566", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { name: "FEDORA-2020-5cdbb19cca", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { name: "DSA-4631", refsource: "DEBIAN", url: "https://www.debian.org/security/2020/dsa-4631", }, { name: "RHSA-2020:0580", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2020-5311", datePublished: "2020-01-03T00:52:42", dateReserved: "2020-01-03T00:00:00", dateUpdated: "2024-08-04T08:22:09.146Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.2.2\", \"matchCriteriaId\": \"7AB2F1CD-5972-4F7B-A025-D92709CABD9E\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B85E9B9B-ADDB-4D2F-A857-685BD30CE856\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A31C8344-3E02-4EB8-8BD8-4C84B7959624\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.\"}, {\"lang\": \"es\", \"value\": \"El archivo libImaging/SgiRleDecode.c en Pillow versiones anteriores a la versi\\u00f3n 6.2.2, tiene un desbordamiento de b\\u00fafer de SGI.\"}]", id: "CVE-2020-5311", lastModified: "2024-11-21T05:33:53.303", metrics: "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}", published: "2020-01-03T01:15:11.167", references: "[{\"url\": \"https://access.redhat.com/errata/RHSA-2020:0566\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2020:0580\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/4272-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2020/dsa-4631\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2020:0566\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2020:0580\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/4272-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2020/dsa-4631\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]", sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-120\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2020-5311\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2020-01-03T01:15:11.167\",\"lastModified\":\"2024-11-21T05:33:53.303\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.\"},{\"lang\":\"es\",\"value\":\"El archivo libImaging/SgiRleDecode.c en Pillow versiones anteriores a la versión 6.2.2, tiene un desbordamiento de búfer de SGI.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.2.2\",\"matchCriteriaId\":\"7AB2F1CD-5972-4F7B-A025-D92709CABD9E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B85E9B9B-ADDB-4D2F-A857-685BD30CE856\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A31C8344-3E02-4EB8-8BD8-4C84B7959624\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0566\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0580\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4272-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4631\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0566\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0580\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4272-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4631\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
pysec-2020-82
Vulnerability from pysec
Published
2020-01-03 01:15
Modified
2020-07-10 17:06
Details
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
Impacted products
| Name | purl |
|---|---|
| pillow | pkg:pypi/pillow |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "pillow", purl: "pkg:pypi/pillow", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, ], repo: "https://github.com/python-pillow/Pillow", type: "GIT", }, { events: [ { introduced: "0", }, { fixed: "6.2.2", }, ], type: "ECOSYSTEM", }, ], versions: [ "1.0", "1.1", "1.2", "1.3", "1.4", "1.5", "1.6", "1.7.0", "1.7.1", "1.7.2", "1.7.3", "1.7.4", "1.7.5", "1.7.6", "1.7.7", "1.7.8", "2.0.0", "2.1.0", "2.2.0", "2.2.1", "2.2.2", "2.3.0", "2.3.1", "2.3.2", "2.4.0", "2.5.0", "2.5.1", "2.5.2", "2.5.3", "2.6.0", "2.6.1", "2.6.2", "2.7.0", "2.8.0", "2.8.1", "2.8.2", "2.9.0", "3.0.0", "3.1.0rc1", "3.1.0.rc1", "3.1.0", "3.1.1", "3.1.2", "3.2.0", "3.3.0", "3.3.1", "3.3.2", "3.3.3", "3.4.0", "3.4.1", "3.4.2", "4.0.0", "4.1.0", "4.1.1", "4.2.0", "4.2.1", "4.3.0", "5.0.0", "5.1.0", "5.2.0", "5.3.0", "5.4.0.dev0", "5.4.0", "5.4.1", "6.0.0", "6.1.0", "6.2.0", "6.2.1", ], }, ], aliases: [ "CVE-2020-5311", "GHSA-r7rm-8j6h-r933", ], details: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", id: "PYSEC-2020-82", modified: "2020-07-10T17:06:00Z", published: "2020-01-03T01:15:00Z", references: [ { type: "WEB", url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { type: "FIX", url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { type: "WEB", url: "https://usn.ubuntu.com/4272-1/", }, { type: "ADVISORY", url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { type: "ADVISORY", url: "https://www.debian.org/security/2020/dsa-4631", }, { type: "ADVISORY", url: "https://access.redhat.com/errata/RHSA-2020:0580", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-r7rm-8j6h-r933", }, ], }
rhsa-2020_0566
Vulnerability from csaf_redhat
Published
2020-02-20 22:18
Modified
2024-11-13 22:11
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:0566", url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0566.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T22:11:33+00:00", generator: { date: "2024-11-13T22:11:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2020:0566", initial_release_date: "2020-02-20T22:18:13+00:00", revision_history: [ { date: "2020-02-20T22:18:13+00:00", number: "1", summary: "Initial version", }, { date: "2020-02-20T22:18:13+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T22:11:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product: { name: "Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_e4s:8.0::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-10.el8_0.src", product: { name: "python-pillow-0:5.1.1-10.el8_0.src", product_id: "python-pillow-0:5.1.1-10.el8_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-10.el8_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-10.el8_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", }, product_reference: "python-pillow-0:5.1.1-10.el8_0.src", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, ], }, vulnerabilities: [ { cve: "CVE-2019-16865", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2019-11-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1774066", }, ], notes: [ { category: "description", text: "A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "RHBZ#1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16865", url: "https://www.cve.org/CVERecord?id=CVE-2019-16865", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", }, ], release_date: "2019-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, ], }
RHSA-2021:0420
Vulnerability from csaf_redhat
Published
2021-02-04 16:14
Modified
2025-04-03 10:37
Summary
Red Hat Security Advisory: Red Hat Quay v3.4.0 security update
Notes
Topic
Red Hat Quay 3.4.0 is now available with bug fixes and various
enhancements.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Quay 3.4.0 release
Security Fix(es):
* waitress: HTTP request smuggling through LF vs CRLF handling (CVE-2019-16785)
* waitress: HTTP request smuggling through invalid Transfer-Encoding (CVE-2019-16786)
* waitress: HTTP Request Smuggling through Invalid whitespace characters in headers (CVE-2019-16789)
* python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode (CVE-2020-5310)
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode() (CVE-2020-10379)
* python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2 (CVE-2020-11538)
* openstack-mistral: information disclosure in mistral log (CVE-2019-3866)
* python-pillow: uncontrolled resource consumption in FpxImagePlugin.py (CVE-2019-19911)
* PyYAML: command execution through python/object/apply constructor in FullLoader (CVE-2019-20477)
* python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images (CVE-2020-5313)
* yarn: Arbitrary filesystem write via tar expansion (CVE-2020-8131)
* golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash (CVE-2020-14040)
* python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c (CVE-2020-10177)
* python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files (CVE-2020-10378)
* python-pillow: multiple out-of-bounds reads via a crafted JP2 file (CVE-2020-10994)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Quay 3.4.0 is now available with bug fixes and various\nenhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Quay 3.4.0 release\n\nSecurity Fix(es):\n\n* waitress: HTTP request smuggling through LF vs CRLF handling (CVE-2019-16785)\n\n* waitress: HTTP request smuggling through invalid Transfer-Encoding (CVE-2019-16786)\n\n* waitress: HTTP Request Smuggling through Invalid whitespace characters in headers (CVE-2019-16789)\n\n* python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode (CVE-2020-5310)\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode() (CVE-2020-10379)\n\n* python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2 (CVE-2020-11538)\n\n* openstack-mistral: information disclosure in mistral log (CVE-2019-3866)\n\n* python-pillow: uncontrolled resource consumption in FpxImagePlugin.py (CVE-2019-19911)\n\n* PyYAML: command execution through python/object/apply constructor in FullLoader (CVE-2019-20477)\n\n* python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images (CVE-2020-5313)\n\n* yarn: Arbitrary filesystem write via tar expansion (CVE-2020-8131)\n\n* golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash (CVE-2020-14040)\n\n* python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c (CVE-2020-10177)\n\n* python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files (CVE-2020-10378)\n\n* python-pillow: multiple out-of-bounds reads via a crafted JP2 file (CVE-2020-10994)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2021:0420", url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "1768731", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1768731", }, { category: "external", summary: "1789532", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789532", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "1789538", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789538", }, { category: "external", summary: "1789540", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789540", }, { category: "external", summary: "1789807", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789807", }, { category: "external", summary: "1791415", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791415", }, { category: "external", summary: "1791420", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791420", }, { category: "external", summary: "1806005", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1806005", }, { category: "external", summary: "1816261", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1816261", }, { category: "external", summary: "1852814", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852814", }, { category: "external", summary: "1852820", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852820", }, { category: "external", summary: "1852824", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852824", }, { category: "external", summary: "1852832", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852832", }, { category: "external", summary: "1852836", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852836", }, { category: "external", summary: "1853652", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1853652", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0420.json", }, ], title: "Red Hat Security Advisory: Red Hat Quay v3.4.0 security update", tracking: { current_release_date: "2025-04-03T10:37:50+00:00", generator: { date: "2025-04-03T10:37:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2021:0420", initial_release_date: "2021-02-04T16:14:00+00:00", revision_history: [ { date: "2021-02-04T16:14:00+00:00", number: "1", summary: "Initial version", }, { date: "2021-02-04T16:14:00+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-03T10:37:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Quay v3", product: { name: "Quay v3", product_id: "8Base-Quay-3", product_identification_helper: { cpe: "cpe:/a:redhat:quay:3::el8", }, }, }, ], category: "product_family", name: "Red Hat Quay", }, { branches: [ { category: "product_version", name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product: { name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product_id: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product_identification_helper: { purl: "pkg:oci/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06?arch=amd64&repository_url=registry.redhat.io/quay/quay-bridge-operator-bundle&tag=v3.4.0-3", }, }, }, { category: "product_version", name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product: { name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_id: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_identification_helper: { purl: "pkg:oci/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c?arch=amd64&repository_url=registry.redhat.io/quay/quay-bridge-operator-rhel8&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product: { name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_id: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_identification_helper: { purl: "pkg:oci/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c?arch=amd64&repository_url=registry.redhat.io/quay/quay-openshift-bridge-rhel8-operator&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product: { name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product_id: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product_identification_helper: { purl: "pkg:oci/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165?arch=amd64&repository_url=registry.redhat.io/quay/quay-builder-rhel8&tag=v3.4.0-18", }, }, }, { category: "product_version", name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product: { name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product_id: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product_identification_helper: { purl: "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c?arch=amd64&repository_url=registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product: { name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product_id: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product_identification_helper: { purl: "pkg:oci/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d?arch=amd64&repository_url=registry.redhat.io/quay/clair-rhel8&tag=v3.4.0-25", }, }, }, { category: "product_version", name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product: { name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product_id: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product_identification_helper: { purl: "pkg:oci/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3?arch=amd64&repository_url=registry.redhat.io/quay/quay-container-security-operator-bundle&tag=v3.4.0-2", }, }, }, { category: "product_version", name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product: { name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product_id: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product_identification_helper: { purl: "pkg:oci/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e?arch=amd64&repository_url=registry.redhat.io/quay/quay-container-security-operator-rhel8&tag=v3.4.0-2", }, }, }, { category: "product_version", name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product: { name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product_id: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product_identification_helper: { purl: "pkg:oci/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4?arch=amd64&repository_url=registry.redhat.io/quay/quay-operator-bundle&tag=v3.4.0-89", }, }, }, { category: "product_version", name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product: { name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product_id: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product_identification_helper: { purl: "pkg:oci/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98?arch=amd64&repository_url=registry.redhat.io/quay/quay-operator-rhel8&tag=v3.4.0-132", }, }, }, { category: "product_version", name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product: { name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product_id: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product_identification_helper: { purl: "pkg:oci/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f?arch=amd64&repository_url=registry.redhat.io/quay/quay-rhel8&tag=v3.4.0-51", }, }, }, ], category: "architecture", name: "amd64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", }, product_reference: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", }, product_reference: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", }, product_reference: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", }, product_reference: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", }, product_reference: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", }, product_reference: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", }, product_reference: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", }, product_reference: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", }, product_reference: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", }, product_reference: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", }, product_reference: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", relates_to_product_reference: "8Base-Quay-3", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "the OpenStack project", ], }, { names: [ "Gauvain Pocentek and Clément Beaufils", ], organization: "Kindred Group PLC", summary: "Acknowledged by upstream.", }, ], cve: "CVE-2019-3866", cwe: { id: "CWE-732", name: "Incorrect Permission Assignment for Critical Resource", }, discovery_date: "2019-11-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1768731", }, ], notes: [ { category: "description", text: "An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.", title: "Vulnerability description", }, { category: "summary", text: "openstack-mistral: information disclosure in mistral log", title: "Vulnerability summary", }, { category: "other", text: "In Red Hat OpenStack Platform 10/13, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP10/13 openstack-mistral package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-3866", }, { category: "external", summary: "RHBZ#1768731", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1768731", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-3866", url: "https://www.cve.org/CVERecord?id=CVE-2019-3866", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-3866", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-3866", }, ], release_date: "2019-11-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "workaround", details: "Plain text information can be masked by ensuring that all mistral log files are not world readable.", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openstack-mistral: information disclosure in mistral log", }, { cve: "CVE-2019-16785", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2020-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1791420", }, ], notes: [ { category: "description", text: "An HTTP-request vulnerability was discovered in Waitress which implemented a \"MAY\" part of the RFC7230 which states: \"Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR.\" Unfortunately, if a front-end server does not process header fields with an LF the same way as it processes those with a CRLF, it can lead to the front-end and the back-end server processing the same HTTP message in two different ways. This vulnerability can lead to a potential for HTTP request smuggling and splitting where Waitress may see two requests, while the front-end server only sees a single HTTP message.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP request smuggling through LF vs CRLF handling", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nIn Red Hat OpenStack Platform 13, because the flawed code is not used and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16785", }, { category: "external", summary: "RHBZ#1791420", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791420", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16785", url: "https://www.cve.org/CVERecord?id=CVE-2019-16785", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16785", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16785", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", }, ], release_date: "2019-12-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP request smuggling through LF vs CRLF handling", }, { cve: "CVE-2019-16786", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2020-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1791415", }, ], notes: [ { category: "description", text: "An HTTP-interpretation flaw was found in waitress which did not properly validate incoming HTTP headers. When parsing the Transfer-Encoding header, waitress would look only for a single string value. According to the HTTP standard, Transfer-Encoding should be a comma-separated list, with the inner-most encoding first, followed by any further transfer codings, ending with 'chunked'. Because of this flaw, requests sent with: \"Transfer-Encoding: gzip, chunked\" would get ignored, and waitress would use the Content-Length header instead to determine the body size of the HTTP message. A remote attacker could exploit this flaw to force waitress to accept potentially bad HTTP requests or treat a single request as multiple requests in the case of HTTP pipelining.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP request smuggling through invalid Transfer-Encoding", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nIn Red Hat OpenStack Platform 13, because the flawed code is not used and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16786", }, { category: "external", summary: "RHBZ#1791415", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791415", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16786", url: "https://www.cve.org/CVERecord?id=CVE-2019-16786", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16786", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16786", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", }, ], release_date: "2019-12-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP request smuggling through invalid Transfer-Encoding", }, { cve: "CVE-2019-16789", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-12-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789807", }, ], notes: [ { category: "description", text: "An HTTP-interpretation flaw was found in waitress, through version 1.4.0. If a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests containing special whitespace characters in the Transfer-Encoding header would get parsed by waitress as being a chunked request, but a front-end server would use the Content-Length instead as the Transfer-Encoding header is considered invalid due to containing invalid characters. If a front-end server does HTTP pipelining to a backend Waitress server, an HTTP request splitting could occur which may lead to potential cache poisoning or unexpected information disclosure. This issue is fixed in Waitress 1.4.1 through more strict HTTP field validation. The highest threat from this vulnerability is data integrity.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP Request Smuggling through Invalid whitespace characters in headers", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nFor Red Hat OpenStack Platform 13, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16789", }, { category: "external", summary: "RHBZ#1789807", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789807", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16789", url: "https://www.cve.org/CVERecord?id=CVE-2019-16789", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16789", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16789", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id2", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id2", }, ], release_date: "2019-12-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP Request Smuggling through Invalid whitespace characters in headers", }, { cve: "CVE-2019-19911", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789540", }, ], notes: [ { category: "description", text: "A denial of service vulnerability was found in Pillow in versions before 6.2.2, where the FpxImagePlugin.py file calls the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows systems running 32-bit Python, this flaw results in an OverflowError or MemoryError due to the 2 GB limit. On Linux systems running 64-bit Python, this flaw results in the termination of the process by the out-of-memory (OOM) killer. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: uncontrolled resource consumption in FpxImagePlugin.py", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 7, and 8 as they did not include python-olefile, which is necessary to use the FPX image plugin.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-19911", }, { category: "external", summary: "RHBZ#1789540", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789540", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-19911", url: "https://www.cve.org/CVERecord?id=CVE-2019-19911", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-19911", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-19911", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: uncontrolled resource consumption in FpxImagePlugin.py", }, { cve: "CVE-2019-20477", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2020-02-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1806005", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/apply constructor.", title: "Vulnerability description", }, { category: "summary", text: "PyYAML: command execution through python/object/apply constructor in FullLoader", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of PyYAML as shipped with Red Hat Enterprise Linux 7, and 8 as they did not include the class FullLoader, which contains this vulnerability.\n\nThe PyYAML libary that is provided in the Red Hat OpenStack repositories is vulnerable. However, because there are no instances where this library is used in a way which exposes the vulnerability, the impact to OpenStack products has been reduced to 'low' and Red Hat will not be providing a fix at this time. Any updates will be through RHEL channels.\n\nRed Hat Quay 3.2 uses the vulnerable load function, but only to parse the Nginx configuration file, which only contains trusted data.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-20477", }, { category: "external", summary: "RHBZ#1806005", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1806005", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-20477", url: "https://www.cve.org/CVERecord?id=CVE-2019-20477", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-20477", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-20477", }, ], release_date: "2019-11-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "workaround", details: "Use `yaml.safe_load` or the SafeLoader loader when you parse untrusted input.", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "PyYAML: command execution through python/object/apply constructor in FullLoader", }, { cve: "CVE-2020-5310", cwe: { id: "CWE-122", name: "Heap-based Buffer Overflow", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789538", }, ], notes: [ { category: "description", text: "libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 5, 6, 7, and 8 as they did not include support for tiled TIFF images, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5310", }, { category: "external", summary: "RHBZ#1789538", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789538", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5310", url: "https://www.cve.org/CVERecord?id=CVE-2020-5310", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5310", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5310", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, { cve: "CVE-2020-5313", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789532", }, ], notes: [ { category: "description", text: "An out-of-bounds read was discovered in python-pillow in the way it decodes FLI images. An application that uses python-pillow to load untrusted images may be vulnerable to this flaw, which can allow an attacker to read the memory of the application they should be not allowed to read.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5313", }, { category: "external", summary: "RHBZ#1789532", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789532", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5313", url: "https://www.cve.org/CVERecord?id=CVE-2020-5313", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5313", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5313", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images", }, { cve: "CVE-2020-8131", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2020-02-24T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1816261", }, ], notes: [ { category: "description", text: "An arbitrary file write flaw was found in Yarn. This flaw allows an attacker to write files to a user’s system in unexpected places, potentially leading to remote code execution. The attacker would need to first trick a developer into installing a malicious package.", title: "Vulnerability description", }, { category: "summary", text: "yarn: Arbitrary filesystem write via tar expansion", title: "Vulnerability summary", }, { category: "other", text: "Normally yarn allows packages to run postinstall scripts which can write arbitrary files to the users system. This vulnerability allows an attacker to better hide the attack and also allow arbitrary file write when postinstall scripts are disabled with the '--ignore-scripts' option of 'yarn install'.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-8131", }, { category: "external", summary: "RHBZ#1816261", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1816261", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-8131", url: "https://www.cve.org/CVERecord?id=CVE-2020-8131", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-8131", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-8131", }, ], release_date: "2020-02-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "yarn: Arbitrary filesystem write via tar expansion", }, { cve: "CVE-2020-10177", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852824", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. Multiple out-of-bounds reads occur in libImaging/FliDecode.c.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10177", }, { category: "external", summary: "RHBZ#1852824", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852824", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10177", url: "https://www.cve.org/CVERecord?id=CVE-2020-10177", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10177", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10177", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c", }, { cve: "CVE-2020-10378", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852832", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. In libImaging/PcxDecode.c, an out-of-bounds read occurs when reading PCX files where state->shuffle is instructed to read beyond state->buffer.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10378", }, { category: "external", summary: "RHBZ#1852832", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852832", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10378", url: "https://www.cve.org/CVERecord?id=CVE-2020-10378", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10378", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10378", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files", }, { cve: "CVE-2020-10379", cwe: { id: "CWE-120", name: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852836", }, ], notes: [ { category: "description", text: "In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode()", title: "Vulnerability summary", }, { category: "other", text: "While python-pillow is listed as a dependency of Red Hat Quay, it is not used by the application.\n\nThis issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 5, 6, 7, and 8 as they provide an older version of the code which does not include the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10379", }, { category: "external", summary: "RHBZ#1852836", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852836", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10379", url: "https://www.cve.org/CVERecord?id=CVE-2020-10379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10379", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10379", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode()", }, { cve: "CVE-2020-10994", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852820", }, ], notes: [ { category: "description", text: "An out-of-bounds read flaw was found in python-pillow in the way JP2 images are parsed. An application that uses python-pillow to decode untrusted images may be vulnerable to this issue. This flaw allows an attacker to read data. The highest threat from this vulnerability is to confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: multiple out-of-bounds reads via a crafted JP2 file", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include the JP2 image parser, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10994", }, { category: "external", summary: "RHBZ#1852820", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852820", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10994", url: "https://www.cve.org/CVERecord?id=CVE-2020-10994", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10994", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10994", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: multiple out-of-bounds reads via a crafted JP2 file", }, { cve: "CVE-2020-11538", cwe: { id: "CWE-122", name: "Heap-based Buffer Overflow", }, discovery_date: "2020-07-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852814", }, ], notes: [ { category: "description", text: "An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-11538", }, { category: "external", summary: "RHBZ#1852814", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852814", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-11538", url: "https://www.cve.org/CVERecord?id=CVE-2020-11538", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-11538", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-11538", }, ], release_date: "2020-07-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2", }, { cve: "CVE-2020-14040", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2020-06-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1853652", }, ], notes: [ { category: "description", text: "A denial of service vulnerability was found in the golang.org/x/text library. A library or application must use one of the vulnerable functions, such as unicode.Transform, transform.String, or transform.Byte, to be susceptible to this vulnerability. If an attacker is able to supply specific characters or strings to the vulnerable application, there is the potential to cause an infinite loop to occur using more memory, resulting in a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash", title: "Vulnerability summary", }, { category: "other", text: "* OpenShift ServiceMesh (OSSM) 1.0 is Out Of Support Scope (OOSS) for Moderate and Low impact vulnerabilities. Jaeger was packaged with ServiceMesh in 1.0, and hence is also marked OOSS, but the Jaeger-Operator is a standalone product and is affected by this vulnerability.\n\n* Because Service Telemetry Framework does not directly use unicode.UTF16, no update will be provided at this time for STF's sg-core-container.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-14040", }, { category: "external", summary: "RHBZ#1853652", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1853652", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-14040", url: "https://www.cve.org/CVERecord?id=CVE-2020-14040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-14040", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-14040", }, { category: "external", summary: "https://github.com/golang/go/issues/39491", url: "https://github.com/golang/go/issues/39491", }, { category: "external", summary: "https://groups.google.com/forum/#!topic/golang-announce/bXVeAmGOqz0", url: "https://groups.google.com/forum/#!topic/golang-announce/bXVeAmGOqz0", }, ], release_date: "2020-06-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash", }, ], }
rhsa-2020:0580
Vulnerability from csaf_redhat
Published
2020-02-24 12:59
Modified
2024-11-13 22:11
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:0580", url: "https://access.redhat.com/errata/RHSA-2020:0580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0580.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T22:11:15+00:00", generator: { date: "2024-11-13T22:11:15+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2020:0580", initial_release_date: "2020-02-24T12:59:24+00:00", revision_history: [ { date: "2020-02-24T12:59:24+00:00", number: "1", summary: "Initial version", }, { date: "2020-02-24T12:59:24+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T22:11:15+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-10.el8_1.src", product: { name: "python-pillow-0:5.1.1-10.el8_1.src", product_id: "python-pillow-0:5.1.1-10.el8_1.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-10.el8_1?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-10.el8_1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", }, product_reference: "python-pillow-0:5.1.1-10.el8_1.src", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2019-16865", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2019-11-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1774066", }, ], notes: [ { category: "description", text: "A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "RHBZ#1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16865", url: "https://www.cve.org/CVERecord?id=CVE-2019-16865", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", }, ], release_date: "2019-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, ], }
rhsa-2021:0420
Vulnerability from csaf_redhat
Published
2021-02-04 16:14
Modified
2025-04-03 10:37
Summary
Red Hat Security Advisory: Red Hat Quay v3.4.0 security update
Notes
Topic
Red Hat Quay 3.4.0 is now available with bug fixes and various
enhancements.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Quay 3.4.0 release
Security Fix(es):
* waitress: HTTP request smuggling through LF vs CRLF handling (CVE-2019-16785)
* waitress: HTTP request smuggling through invalid Transfer-Encoding (CVE-2019-16786)
* waitress: HTTP Request Smuggling through Invalid whitespace characters in headers (CVE-2019-16789)
* python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode (CVE-2020-5310)
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode() (CVE-2020-10379)
* python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2 (CVE-2020-11538)
* openstack-mistral: information disclosure in mistral log (CVE-2019-3866)
* python-pillow: uncontrolled resource consumption in FpxImagePlugin.py (CVE-2019-19911)
* PyYAML: command execution through python/object/apply constructor in FullLoader (CVE-2019-20477)
* python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images (CVE-2020-5313)
* yarn: Arbitrary filesystem write via tar expansion (CVE-2020-8131)
* golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash (CVE-2020-14040)
* python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c (CVE-2020-10177)
* python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files (CVE-2020-10378)
* python-pillow: multiple out-of-bounds reads via a crafted JP2 file (CVE-2020-10994)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Quay 3.4.0 is now available with bug fixes and various\nenhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Quay 3.4.0 release\n\nSecurity Fix(es):\n\n* waitress: HTTP request smuggling through LF vs CRLF handling (CVE-2019-16785)\n\n* waitress: HTTP request smuggling through invalid Transfer-Encoding (CVE-2019-16786)\n\n* waitress: HTTP Request Smuggling through Invalid whitespace characters in headers (CVE-2019-16789)\n\n* python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode (CVE-2020-5310)\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode() (CVE-2020-10379)\n\n* python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2 (CVE-2020-11538)\n\n* openstack-mistral: information disclosure in mistral log (CVE-2019-3866)\n\n* python-pillow: uncontrolled resource consumption in FpxImagePlugin.py (CVE-2019-19911)\n\n* PyYAML: command execution through python/object/apply constructor in FullLoader (CVE-2019-20477)\n\n* python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images (CVE-2020-5313)\n\n* yarn: Arbitrary filesystem write via tar expansion (CVE-2020-8131)\n\n* golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash (CVE-2020-14040)\n\n* python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c (CVE-2020-10177)\n\n* python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files (CVE-2020-10378)\n\n* python-pillow: multiple out-of-bounds reads via a crafted JP2 file (CVE-2020-10994)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2021:0420", url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "1768731", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1768731", }, { category: "external", summary: "1789532", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789532", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "1789538", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789538", }, { category: "external", summary: "1789540", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789540", }, { category: "external", summary: "1789807", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789807", }, { category: "external", summary: "1791415", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791415", }, { category: "external", summary: "1791420", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791420", }, { category: "external", summary: "1806005", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1806005", }, { category: "external", summary: "1816261", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1816261", }, { category: "external", summary: "1852814", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852814", }, { category: "external", summary: "1852820", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852820", }, { category: "external", summary: "1852824", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852824", }, { category: "external", summary: "1852832", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852832", }, { category: "external", summary: "1852836", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852836", }, { category: "external", summary: "1853652", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1853652", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0420.json", }, ], title: "Red Hat Security Advisory: Red Hat Quay v3.4.0 security update", tracking: { current_release_date: "2025-04-03T10:37:50+00:00", generator: { date: "2025-04-03T10:37:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2021:0420", initial_release_date: "2021-02-04T16:14:00+00:00", revision_history: [ { date: "2021-02-04T16:14:00+00:00", number: "1", summary: "Initial version", }, { date: "2021-02-04T16:14:00+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-03T10:37:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Quay v3", product: { name: "Quay v3", product_id: "8Base-Quay-3", product_identification_helper: { cpe: "cpe:/a:redhat:quay:3::el8", }, }, }, ], category: "product_family", name: "Red Hat Quay", }, { branches: [ { category: "product_version", name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product: { name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product_id: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product_identification_helper: { purl: "pkg:oci/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06?arch=amd64&repository_url=registry.redhat.io/quay/quay-bridge-operator-bundle&tag=v3.4.0-3", }, }, }, { category: "product_version", name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product: { name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_id: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_identification_helper: { purl: "pkg:oci/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c?arch=amd64&repository_url=registry.redhat.io/quay/quay-bridge-operator-rhel8&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product: { name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_id: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_identification_helper: { purl: "pkg:oci/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c?arch=amd64&repository_url=registry.redhat.io/quay/quay-openshift-bridge-rhel8-operator&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product: { name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product_id: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product_identification_helper: { purl: "pkg:oci/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165?arch=amd64&repository_url=registry.redhat.io/quay/quay-builder-rhel8&tag=v3.4.0-18", }, }, }, { category: "product_version", name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product: { name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product_id: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product_identification_helper: { purl: "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c?arch=amd64&repository_url=registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product: { name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product_id: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product_identification_helper: { purl: "pkg:oci/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d?arch=amd64&repository_url=registry.redhat.io/quay/clair-rhel8&tag=v3.4.0-25", }, }, }, { category: "product_version", name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product: { name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product_id: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product_identification_helper: { purl: "pkg:oci/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3?arch=amd64&repository_url=registry.redhat.io/quay/quay-container-security-operator-bundle&tag=v3.4.0-2", }, }, }, { category: "product_version", name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product: { name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product_id: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product_identification_helper: { purl: "pkg:oci/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e?arch=amd64&repository_url=registry.redhat.io/quay/quay-container-security-operator-rhel8&tag=v3.4.0-2", }, }, }, { category: "product_version", name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product: { name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product_id: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product_identification_helper: { purl: "pkg:oci/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4?arch=amd64&repository_url=registry.redhat.io/quay/quay-operator-bundle&tag=v3.4.0-89", }, }, }, { category: "product_version", name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product: { name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product_id: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product_identification_helper: { purl: "pkg:oci/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98?arch=amd64&repository_url=registry.redhat.io/quay/quay-operator-rhel8&tag=v3.4.0-132", }, }, }, { category: "product_version", name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product: { name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product_id: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product_identification_helper: { purl: "pkg:oci/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f?arch=amd64&repository_url=registry.redhat.io/quay/quay-rhel8&tag=v3.4.0-51", }, }, }, ], category: "architecture", name: "amd64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", }, product_reference: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", }, product_reference: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", }, product_reference: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", }, product_reference: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", }, product_reference: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", }, product_reference: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", }, product_reference: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", }, product_reference: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", }, product_reference: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", }, product_reference: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", }, product_reference: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", relates_to_product_reference: "8Base-Quay-3", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "the OpenStack project", ], }, { names: [ "Gauvain Pocentek and Clément Beaufils", ], organization: "Kindred Group PLC", summary: "Acknowledged by upstream.", }, ], cve: "CVE-2019-3866", cwe: { id: "CWE-732", name: "Incorrect Permission Assignment for Critical Resource", }, discovery_date: "2019-11-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1768731", }, ], notes: [ { category: "description", text: "An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.", title: "Vulnerability description", }, { category: "summary", text: "openstack-mistral: information disclosure in mistral log", title: "Vulnerability summary", }, { category: "other", text: "In Red Hat OpenStack Platform 10/13, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP10/13 openstack-mistral package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-3866", }, { category: "external", summary: "RHBZ#1768731", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1768731", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-3866", url: "https://www.cve.org/CVERecord?id=CVE-2019-3866", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-3866", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-3866", }, ], release_date: "2019-11-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "workaround", details: "Plain text information can be masked by ensuring that all mistral log files are not world readable.", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openstack-mistral: information disclosure in mistral log", }, { cve: "CVE-2019-16785", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2020-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1791420", }, ], notes: [ { category: "description", text: "An HTTP-request vulnerability was discovered in Waitress which implemented a \"MAY\" part of the RFC7230 which states: \"Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR.\" Unfortunately, if a front-end server does not process header fields with an LF the same way as it processes those with a CRLF, it can lead to the front-end and the back-end server processing the same HTTP message in two different ways. This vulnerability can lead to a potential for HTTP request smuggling and splitting where Waitress may see two requests, while the front-end server only sees a single HTTP message.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP request smuggling through LF vs CRLF handling", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nIn Red Hat OpenStack Platform 13, because the flawed code is not used and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16785", }, { category: "external", summary: "RHBZ#1791420", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791420", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16785", url: "https://www.cve.org/CVERecord?id=CVE-2019-16785", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16785", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16785", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", }, ], release_date: "2019-12-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP request smuggling through LF vs CRLF handling", }, { cve: "CVE-2019-16786", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2020-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1791415", }, ], notes: [ { category: "description", text: "An HTTP-interpretation flaw was found in waitress which did not properly validate incoming HTTP headers. When parsing the Transfer-Encoding header, waitress would look only for a single string value. According to the HTTP standard, Transfer-Encoding should be a comma-separated list, with the inner-most encoding first, followed by any further transfer codings, ending with 'chunked'. Because of this flaw, requests sent with: \"Transfer-Encoding: gzip, chunked\" would get ignored, and waitress would use the Content-Length header instead to determine the body size of the HTTP message. A remote attacker could exploit this flaw to force waitress to accept potentially bad HTTP requests or treat a single request as multiple requests in the case of HTTP pipelining.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP request smuggling through invalid Transfer-Encoding", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nIn Red Hat OpenStack Platform 13, because the flawed code is not used and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16786", }, { category: "external", summary: "RHBZ#1791415", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791415", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16786", url: "https://www.cve.org/CVERecord?id=CVE-2019-16786", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16786", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16786", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", }, ], release_date: "2019-12-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP request smuggling through invalid Transfer-Encoding", }, { cve: "CVE-2019-16789", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-12-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789807", }, ], notes: [ { category: "description", text: "An HTTP-interpretation flaw was found in waitress, through version 1.4.0. If a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests containing special whitespace characters in the Transfer-Encoding header would get parsed by waitress as being a chunked request, but a front-end server would use the Content-Length instead as the Transfer-Encoding header is considered invalid due to containing invalid characters. If a front-end server does HTTP pipelining to a backend Waitress server, an HTTP request splitting could occur which may lead to potential cache poisoning or unexpected information disclosure. This issue is fixed in Waitress 1.4.1 through more strict HTTP field validation. The highest threat from this vulnerability is data integrity.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP Request Smuggling through Invalid whitespace characters in headers", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nFor Red Hat OpenStack Platform 13, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16789", }, { category: "external", summary: "RHBZ#1789807", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789807", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16789", url: "https://www.cve.org/CVERecord?id=CVE-2019-16789", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16789", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16789", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id2", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id2", }, ], release_date: "2019-12-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP Request Smuggling through Invalid whitespace characters in headers", }, { cve: "CVE-2019-19911", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789540", }, ], notes: [ { category: "description", text: "A denial of service vulnerability was found in Pillow in versions before 6.2.2, where the FpxImagePlugin.py file calls the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows systems running 32-bit Python, this flaw results in an OverflowError or MemoryError due to the 2 GB limit. On Linux systems running 64-bit Python, this flaw results in the termination of the process by the out-of-memory (OOM) killer. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: uncontrolled resource consumption in FpxImagePlugin.py", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 7, and 8 as they did not include python-olefile, which is necessary to use the FPX image plugin.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-19911", }, { category: "external", summary: "RHBZ#1789540", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789540", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-19911", url: "https://www.cve.org/CVERecord?id=CVE-2019-19911", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-19911", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-19911", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: uncontrolled resource consumption in FpxImagePlugin.py", }, { cve: "CVE-2019-20477", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2020-02-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1806005", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/apply constructor.", title: "Vulnerability description", }, { category: "summary", text: "PyYAML: command execution through python/object/apply constructor in FullLoader", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of PyYAML as shipped with Red Hat Enterprise Linux 7, and 8 as they did not include the class FullLoader, which contains this vulnerability.\n\nThe PyYAML libary that is provided in the Red Hat OpenStack repositories is vulnerable. However, because there are no instances where this library is used in a way which exposes the vulnerability, the impact to OpenStack products has been reduced to 'low' and Red Hat will not be providing a fix at this time. Any updates will be through RHEL channels.\n\nRed Hat Quay 3.2 uses the vulnerable load function, but only to parse the Nginx configuration file, which only contains trusted data.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-20477", }, { category: "external", summary: "RHBZ#1806005", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1806005", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-20477", url: "https://www.cve.org/CVERecord?id=CVE-2019-20477", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-20477", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-20477", }, ], release_date: "2019-11-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "workaround", details: "Use `yaml.safe_load` or the SafeLoader loader when you parse untrusted input.", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "PyYAML: command execution through python/object/apply constructor in FullLoader", }, { cve: "CVE-2020-5310", cwe: { id: "CWE-122", name: "Heap-based Buffer Overflow", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789538", }, ], notes: [ { category: "description", text: "libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 5, 6, 7, and 8 as they did not include support for tiled TIFF images, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5310", }, { category: "external", summary: "RHBZ#1789538", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789538", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5310", url: "https://www.cve.org/CVERecord?id=CVE-2020-5310", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5310", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5310", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, { cve: "CVE-2020-5313", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789532", }, ], notes: [ { category: "description", text: "An out-of-bounds read was discovered in python-pillow in the way it decodes FLI images. An application that uses python-pillow to load untrusted images may be vulnerable to this flaw, which can allow an attacker to read the memory of the application they should be not allowed to read.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5313", }, { category: "external", summary: "RHBZ#1789532", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789532", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5313", url: "https://www.cve.org/CVERecord?id=CVE-2020-5313", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5313", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5313", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images", }, { cve: "CVE-2020-8131", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2020-02-24T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1816261", }, ], notes: [ { category: "description", text: "An arbitrary file write flaw was found in Yarn. This flaw allows an attacker to write files to a user’s system in unexpected places, potentially leading to remote code execution. The attacker would need to first trick a developer into installing a malicious package.", title: "Vulnerability description", }, { category: "summary", text: "yarn: Arbitrary filesystem write via tar expansion", title: "Vulnerability summary", }, { category: "other", text: "Normally yarn allows packages to run postinstall scripts which can write arbitrary files to the users system. This vulnerability allows an attacker to better hide the attack and also allow arbitrary file write when postinstall scripts are disabled with the '--ignore-scripts' option of 'yarn install'.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-8131", }, { category: "external", summary: "RHBZ#1816261", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1816261", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-8131", url: "https://www.cve.org/CVERecord?id=CVE-2020-8131", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-8131", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-8131", }, ], release_date: "2020-02-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "yarn: Arbitrary filesystem write via tar expansion", }, { cve: "CVE-2020-10177", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852824", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. Multiple out-of-bounds reads occur in libImaging/FliDecode.c.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10177", }, { category: "external", summary: "RHBZ#1852824", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852824", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10177", url: "https://www.cve.org/CVERecord?id=CVE-2020-10177", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10177", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10177", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c", }, { cve: "CVE-2020-10378", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852832", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. In libImaging/PcxDecode.c, an out-of-bounds read occurs when reading PCX files where state->shuffle is instructed to read beyond state->buffer.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10378", }, { category: "external", summary: "RHBZ#1852832", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852832", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10378", url: "https://www.cve.org/CVERecord?id=CVE-2020-10378", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10378", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10378", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files", }, { cve: "CVE-2020-10379", cwe: { id: "CWE-120", name: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852836", }, ], notes: [ { category: "description", text: "In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode()", title: "Vulnerability summary", }, { category: "other", text: "While python-pillow is listed as a dependency of Red Hat Quay, it is not used by the application.\n\nThis issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 5, 6, 7, and 8 as they provide an older version of the code which does not include the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10379", }, { category: "external", summary: "RHBZ#1852836", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852836", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10379", url: "https://www.cve.org/CVERecord?id=CVE-2020-10379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10379", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10379", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode()", }, { cve: "CVE-2020-10994", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852820", }, ], notes: [ { category: "description", text: "An out-of-bounds read flaw was found in python-pillow in the way JP2 images are parsed. An application that uses python-pillow to decode untrusted images may be vulnerable to this issue. This flaw allows an attacker to read data. The highest threat from this vulnerability is to confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: multiple out-of-bounds reads via a crafted JP2 file", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include the JP2 image parser, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10994", }, { category: "external", summary: "RHBZ#1852820", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852820", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10994", url: "https://www.cve.org/CVERecord?id=CVE-2020-10994", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10994", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10994", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: multiple out-of-bounds reads via a crafted JP2 file", }, { cve: "CVE-2020-11538", cwe: { id: "CWE-122", name: "Heap-based Buffer Overflow", }, discovery_date: "2020-07-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852814", }, ], notes: [ { category: "description", text: "An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-11538", }, { category: "external", summary: "RHBZ#1852814", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852814", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-11538", url: "https://www.cve.org/CVERecord?id=CVE-2020-11538", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-11538", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-11538", }, ], release_date: "2020-07-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2", }, { cve: "CVE-2020-14040", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2020-06-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1853652", }, ], notes: [ { category: "description", text: "A denial of service vulnerability was found in the golang.org/x/text library. A library or application must use one of the vulnerable functions, such as unicode.Transform, transform.String, or transform.Byte, to be susceptible to this vulnerability. If an attacker is able to supply specific characters or strings to the vulnerable application, there is the potential to cause an infinite loop to occur using more memory, resulting in a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash", title: "Vulnerability summary", }, { category: "other", text: "* OpenShift ServiceMesh (OSSM) 1.0 is Out Of Support Scope (OOSS) for Moderate and Low impact vulnerabilities. Jaeger was packaged with ServiceMesh in 1.0, and hence is also marked OOSS, but the Jaeger-Operator is a standalone product and is affected by this vulnerability.\n\n* Because Service Telemetry Framework does not directly use unicode.UTF16, no update will be provided at this time for STF's sg-core-container.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-14040", }, { category: "external", summary: "RHBZ#1853652", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1853652", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-14040", url: "https://www.cve.org/CVERecord?id=CVE-2020-14040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-14040", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-14040", }, { category: "external", summary: "https://github.com/golang/go/issues/39491", url: "https://github.com/golang/go/issues/39491", }, { category: "external", summary: "https://groups.google.com/forum/#!topic/golang-announce/bXVeAmGOqz0", url: "https://groups.google.com/forum/#!topic/golang-announce/bXVeAmGOqz0", }, ], release_date: "2020-06-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash", }, ], }
rhsa-2021_0420
Vulnerability from csaf_redhat
Published
2021-02-04 16:14
Modified
2024-12-17 21:13
Summary
Red Hat Security Advisory: Red Hat Quay v3.4.0 security update
Notes
Topic
Red Hat Quay 3.4.0 is now available with bug fixes and various
enhancements.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Quay 3.4.0 release
Security Fix(es):
* waitress: HTTP request smuggling through LF vs CRLF handling (CVE-2019-16785)
* waitress: HTTP request smuggling through invalid Transfer-Encoding (CVE-2019-16786)
* waitress: HTTP Request Smuggling through Invalid whitespace characters in headers (CVE-2019-16789)
* python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode (CVE-2020-5310)
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode() (CVE-2020-10379)
* python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2 (CVE-2020-11538)
* openstack-mistral: information disclosure in mistral log (CVE-2019-3866)
* python-pillow: uncontrolled resource consumption in FpxImagePlugin.py (CVE-2019-19911)
* PyYAML: command execution through python/object/apply constructor in FullLoader (CVE-2019-20477)
* python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images (CVE-2020-5313)
* yarn: Arbitrary filesystem write via tar expansion (CVE-2020-8131)
* golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash (CVE-2020-14040)
* python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c (CVE-2020-10177)
* python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files (CVE-2020-10378)
* python-pillow: multiple out-of-bounds reads via a crafted JP2 file (CVE-2020-10994)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Quay 3.4.0 is now available with bug fixes and various\nenhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Quay 3.4.0 release\n\nSecurity Fix(es):\n\n* waitress: HTTP request smuggling through LF vs CRLF handling (CVE-2019-16785)\n\n* waitress: HTTP request smuggling through invalid Transfer-Encoding (CVE-2019-16786)\n\n* waitress: HTTP Request Smuggling through Invalid whitespace characters in headers (CVE-2019-16789)\n\n* python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode (CVE-2020-5310)\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode() (CVE-2020-10379)\n\n* python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2 (CVE-2020-11538)\n\n* openstack-mistral: information disclosure in mistral log (CVE-2019-3866)\n\n* python-pillow: uncontrolled resource consumption in FpxImagePlugin.py (CVE-2019-19911)\n\n* PyYAML: command execution through python/object/apply constructor in FullLoader (CVE-2019-20477)\n\n* python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images (CVE-2020-5313)\n\n* yarn: Arbitrary filesystem write via tar expansion (CVE-2020-8131)\n\n* golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash (CVE-2020-14040)\n\n* python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c (CVE-2020-10177)\n\n* python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files (CVE-2020-10378)\n\n* python-pillow: multiple out-of-bounds reads via a crafted JP2 file (CVE-2020-10994)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2021:0420", url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "1768731", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1768731", }, { category: "external", summary: "1789532", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789532", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "1789538", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789538", }, { category: "external", summary: "1789540", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789540", }, { category: "external", summary: "1789807", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789807", }, { category: "external", summary: "1791415", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791415", }, { category: "external", summary: "1791420", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791420", }, { category: "external", summary: "1806005", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1806005", }, { category: "external", summary: "1816261", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1816261", }, { category: "external", summary: "1852814", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852814", }, { category: "external", summary: "1852820", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852820", }, { category: "external", summary: "1852824", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852824", }, { category: "external", summary: "1852832", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852832", }, { category: "external", summary: "1852836", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852836", }, { category: "external", summary: "1853652", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1853652", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0420.json", }, ], title: "Red Hat Security Advisory: Red Hat Quay v3.4.0 security update", tracking: { current_release_date: "2024-12-17T21:13:08+00:00", generator: { date: "2024-12-17T21:13:08+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.3", }, }, id: "RHSA-2021:0420", initial_release_date: "2021-02-04T16:14:00+00:00", revision_history: [ { date: "2021-02-04T16:14:00+00:00", number: "1", summary: "Initial version", }, { date: "2021-02-04T16:14:00+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-17T21:13:08+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Quay v3", product: { name: "Quay v3", product_id: "8Base-Quay-3", product_identification_helper: { cpe: "cpe:/a:redhat:quay:3::el8", }, }, }, ], category: "product_family", name: "Red Hat Quay", }, { branches: [ { category: "product_version", name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product: { name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product_id: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", product_identification_helper: { purl: "pkg:oci/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06?arch=amd64&repository_url=registry.redhat.io/quay/quay-bridge-operator-bundle&tag=v3.4.0-3", }, }, }, { category: "product_version", name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product: { name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_id: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_identification_helper: { purl: "pkg:oci/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c?arch=amd64&repository_url=registry.redhat.io/quay/quay-bridge-operator-rhel8&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product: { name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_id: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", product_identification_helper: { purl: "pkg:oci/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c?arch=amd64&repository_url=registry.redhat.io/quay/quay-openshift-bridge-rhel8-operator&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product: { name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product_id: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", product_identification_helper: { purl: "pkg:oci/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165?arch=amd64&repository_url=registry.redhat.io/quay/quay-builder-rhel8&tag=v3.4.0-18", }, }, }, { category: "product_version", name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product: { name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product_id: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", product_identification_helper: { purl: "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c?arch=amd64&repository_url=registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8&tag=v3.4.0-17", }, }, }, { category: "product_version", name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product: { name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product_id: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", product_identification_helper: { purl: "pkg:oci/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d?arch=amd64&repository_url=registry.redhat.io/quay/clair-rhel8&tag=v3.4.0-25", }, }, }, { category: "product_version", name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product: { name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product_id: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", product_identification_helper: { purl: "pkg:oci/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3?arch=amd64&repository_url=registry.redhat.io/quay/quay-container-security-operator-bundle&tag=v3.4.0-2", }, }, }, { category: "product_version", name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product: { name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product_id: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", product_identification_helper: { purl: "pkg:oci/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e?arch=amd64&repository_url=registry.redhat.io/quay/quay-container-security-operator-rhel8&tag=v3.4.0-2", }, }, }, { category: "product_version", name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product: { name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product_id: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", product_identification_helper: { purl: "pkg:oci/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4?arch=amd64&repository_url=registry.redhat.io/quay/quay-operator-bundle&tag=v3.4.0-89", }, }, }, { category: "product_version", name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product: { name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product_id: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", product_identification_helper: { purl: "pkg:oci/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98?arch=amd64&repository_url=registry.redhat.io/quay/quay-operator-rhel8&tag=v3.4.0-132", }, }, }, { category: "product_version", name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product: { name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product_id: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", product_identification_helper: { purl: "pkg:oci/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f?arch=amd64&repository_url=registry.redhat.io/quay/quay-rhel8&tag=v3.4.0-51", }, }, }, ], category: "architecture", name: "amd64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", }, product_reference: "quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", }, product_reference: "quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", }, product_reference: "quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", }, product_reference: "quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", }, product_reference: "quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", }, product_reference: "quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", }, product_reference: "quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", }, product_reference: "quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", }, product_reference: "quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", }, product_reference: "quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", relates_to_product_reference: "8Base-Quay-3", }, { category: "default_component_of", full_product_name: { name: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64 as a component of Quay v3", product_id: "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", }, product_reference: "quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", relates_to_product_reference: "8Base-Quay-3", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "the OpenStack project", ], }, { names: [ "Gauvain Pocentek and Clément Beaufils", ], organization: "Kindred Group PLC", summary: "Acknowledged by upstream.", }, ], cve: "CVE-2019-3866", cwe: { id: "CWE-732", name: "Incorrect Permission Assignment for Critical Resource", }, discovery_date: "2019-11-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1768731", }, ], notes: [ { category: "description", text: "An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.", title: "Vulnerability description", }, { category: "summary", text: "openstack-mistral: information disclosure in mistral log", title: "Vulnerability summary", }, { category: "other", text: "In Red Hat OpenStack Platform 10/13, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP10/13 openstack-mistral package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-3866", }, { category: "external", summary: "RHBZ#1768731", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1768731", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-3866", url: "https://www.cve.org/CVERecord?id=CVE-2019-3866", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-3866", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-3866", }, ], release_date: "2019-11-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "workaround", details: "Plain text information can be masked by ensuring that all mistral log files are not world readable.", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openstack-mistral: information disclosure in mistral log", }, { cve: "CVE-2019-16785", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2020-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1791420", }, ], notes: [ { category: "description", text: "An HTTP-request vulnerability was discovered in Waitress which implemented a \"MAY\" part of the RFC7230 which states: \"Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR.\" Unfortunately, if a front-end server does not process header fields with an LF the same way as it processes those with a CRLF, it can lead to the front-end and the back-end server processing the same HTTP message in two different ways. This vulnerability can lead to a potential for HTTP request smuggling and splitting where Waitress may see two requests, while the front-end server only sees a single HTTP message.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP request smuggling through LF vs CRLF handling", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nIn Red Hat OpenStack Platform 13, because the flawed code is not used and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16785", }, { category: "external", summary: "RHBZ#1791420", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791420", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16785", url: "https://www.cve.org/CVERecord?id=CVE-2019-16785", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16785", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16785", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", }, ], release_date: "2019-12-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP request smuggling through LF vs CRLF handling", }, { cve: "CVE-2019-16786", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2020-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1791415", }, ], notes: [ { category: "description", text: "An HTTP-interpretation flaw was found in waitress which did not properly validate incoming HTTP headers. When parsing the Transfer-Encoding header, waitress would look only for a single string value. According to the HTTP standard, Transfer-Encoding should be a comma-separated list, with the inner-most encoding first, followed by any further transfer codings, ending with 'chunked'. Because of this flaw, requests sent with: \"Transfer-Encoding: gzip, chunked\" would get ignored, and waitress would use the Content-Length header instead to determine the body size of the HTTP message. A remote attacker could exploit this flaw to force waitress to accept potentially bad HTTP requests or treat a single request as multiple requests in the case of HTTP pipelining.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP request smuggling through invalid Transfer-Encoding", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nIn Red Hat OpenStack Platform 13, because the flawed code is not used and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16786", }, { category: "external", summary: "RHBZ#1791415", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1791415", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16786", url: "https://www.cve.org/CVERecord?id=CVE-2019-16786", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16786", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16786", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id6", }, ], release_date: "2019-12-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP request smuggling through invalid Transfer-Encoding", }, { cve: "CVE-2019-16789", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-12-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789807", }, ], notes: [ { category: "description", text: "An HTTP-interpretation flaw was found in waitress, through version 1.4.0. If a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests containing special whitespace characters in the Transfer-Encoding header would get parsed by waitress as being a chunked request, but a front-end server would use the Content-Length instead as the Transfer-Encoding header is considered invalid due to containing invalid characters. If a front-end server does HTTP pipelining to a backend Waitress server, an HTTP request splitting could occur which may lead to potential cache poisoning or unexpected information disclosure. This issue is fixed in Waitress 1.4.1 through more strict HTTP field validation. The highest threat from this vulnerability is data integrity.", title: "Vulnerability description", }, { category: "summary", text: "waitress: HTTP Request Smuggling through Invalid whitespace characters in headers", title: "Vulnerability summary", }, { category: "other", text: "All affected Red Hat products ship but do not use the flawed version of python-waitress. The impact for these products is therefore rated as having a security impact of Low.\n\nFor Red Hat OpenStack Platform 13, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP13 python-waitress package.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16789", }, { category: "external", summary: "RHBZ#1789807", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789807", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16789", url: "https://www.cve.org/CVERecord?id=CVE-2019-16789", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16789", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16789", }, { category: "external", summary: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id2", url: "https://docs.pylonsproject.org/projects/waitress/en/latest/#id2", }, ], release_date: "2019-12-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "waitress: HTTP Request Smuggling through Invalid whitespace characters in headers", }, { cve: "CVE-2019-19911", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789540", }, ], notes: [ { category: "description", text: "A denial of service vulnerability was found in Pillow in versions before 6.2.2, where the FpxImagePlugin.py file calls the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows systems running 32-bit Python, this flaw results in an OverflowError or MemoryError due to the 2 GB limit. On Linux systems running 64-bit Python, this flaw results in the termination of the process by the out-of-memory (OOM) killer. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: uncontrolled resource consumption in FpxImagePlugin.py", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 7, and 8 as they did not include python-olefile, which is necessary to use the FPX image plugin.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-19911", }, { category: "external", summary: "RHBZ#1789540", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789540", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-19911", url: "https://www.cve.org/CVERecord?id=CVE-2019-19911", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-19911", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-19911", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: uncontrolled resource consumption in FpxImagePlugin.py", }, { cve: "CVE-2019-20477", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2020-02-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1806005", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/apply constructor.", title: "Vulnerability description", }, { category: "summary", text: "PyYAML: command execution through python/object/apply constructor in FullLoader", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of PyYAML as shipped with Red Hat Enterprise Linux 7, and 8 as they did not include the class FullLoader, which contains this vulnerability.\n\nThe PyYAML libary that is provided in the Red Hat OpenStack repositories is vulnerable. However, because there are no instances where this library is used in a way which exposes the vulnerability, the impact to OpenStack products has been reduced to 'low' and Red Hat will not be providing a fix at this time. Any updates will be through RHEL channels.\n\nRed Hat Quay 3.2 uses the vulnerable load function, but only to parse the Nginx configuration file, which only contains trusted data.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-20477", }, { category: "external", summary: "RHBZ#1806005", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1806005", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-20477", url: "https://www.cve.org/CVERecord?id=CVE-2019-20477", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-20477", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-20477", }, ], release_date: "2019-11-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, { category: "workaround", details: "Use `yaml.safe_load` or the SafeLoader loader when you parse untrusted input.", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "PyYAML: command execution through python/object/apply constructor in FullLoader", }, { cve: "CVE-2020-5310", cwe: { id: "CWE-122", name: "Heap-based Buffer Overflow", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789538", }, ], notes: [ { category: "description", text: "libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 5, 6, 7, and 8 as they did not include support for tiled TIFF images, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5310", }, { category: "external", summary: "RHBZ#1789538", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789538", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5310", url: "https://www.cve.org/CVERecord?id=CVE-2020-5310", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5310", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5310", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: Integer overflow leading to buffer overflow in ImagingLibTiffDecode", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, { cve: "CVE-2020-5313", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789532", }, ], notes: [ { category: "description", text: "An out-of-bounds read was discovered in python-pillow in the way it decodes FLI images. An application that uses python-pillow to load untrusted images may be vulnerable to this flaw, which can allow an attacker to read the memory of the application they should be not allowed to read.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5313", }, { category: "external", summary: "RHBZ#1789532", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789532", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5313", url: "https://www.cve.org/CVERecord?id=CVE-2020-5313", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5313", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5313", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: out-of-bounds read in ImagingFliDecode when loading FLI images", }, { cve: "CVE-2020-8131", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2020-02-24T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1816261", }, ], notes: [ { category: "description", text: "An arbitrary file write flaw was found in Yarn. This flaw allows an attacker to write files to a user’s system in unexpected places, potentially leading to remote code execution. The attacker would need to first trick a developer into installing a malicious package.", title: "Vulnerability description", }, { category: "summary", text: "yarn: Arbitrary filesystem write via tar expansion", title: "Vulnerability summary", }, { category: "other", text: "Normally yarn allows packages to run postinstall scripts which can write arbitrary files to the users system. This vulnerability allows an attacker to better hide the attack and also allow arbitrary file write when postinstall scripts are disabled with the '--ignore-scripts' option of 'yarn install'.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-8131", }, { category: "external", summary: "RHBZ#1816261", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1816261", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-8131", url: "https://www.cve.org/CVERecord?id=CVE-2020-8131", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-8131", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-8131", }, ], release_date: "2020-02-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "yarn: Arbitrary filesystem write via tar expansion", }, { cve: "CVE-2020-10177", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852824", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. Multiple out-of-bounds reads occur in libImaging/FliDecode.c.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10177", }, { category: "external", summary: "RHBZ#1852824", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852824", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10177", url: "https://www.cve.org/CVERecord?id=CVE-2020-10177", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10177", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10177", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c", }, { cve: "CVE-2020-10378", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852832", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. In libImaging/PcxDecode.c, an out-of-bounds read occurs when reading PCX files where state->shuffle is instructed to read beyond state->buffer.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10378", }, { category: "external", summary: "RHBZ#1852832", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852832", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10378", url: "https://www.cve.org/CVERecord?id=CVE-2020-10378", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10378", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10378", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files", }, { cve: "CVE-2020-10379", cwe: { id: "CWE-120", name: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852836", }, ], notes: [ { category: "description", text: "In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode()", title: "Vulnerability summary", }, { category: "other", text: "While python-pillow is listed as a dependency of Red Hat Quay, it is not used by the application.\n\nThis issue did not affect the versions of python-pillow as shipped with Red Hat Enterprise Linux 5, 6, 7, and 8 as they provide an older version of the code which does not include the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10379", }, { category: "external", summary: "RHBZ#1852836", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852836", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10379", url: "https://www.cve.org/CVERecord?id=CVE-2020-10379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10379", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10379", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode()", }, { cve: "CVE-2020-10994", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-25T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852820", }, ], notes: [ { category: "description", text: "An out-of-bounds read flaw was found in python-pillow in the way JP2 images are parsed. An application that uses python-pillow to decode untrusted images may be vulnerable to this issue. This flaw allows an attacker to read data. The highest threat from this vulnerability is to confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: multiple out-of-bounds reads via a crafted JP2 file", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include the JP2 image parser, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-10994", }, { category: "external", summary: "RHBZ#1852820", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852820", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-10994", url: "https://www.cve.org/CVERecord?id=CVE-2020-10994", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-10994", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-10994", }, ], release_date: "2020-06-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: multiple out-of-bounds reads via a crafted JP2 file", }, { cve: "CVE-2020-11538", cwe: { id: "CWE-122", name: "Heap-based Buffer Overflow", }, discovery_date: "2020-07-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852814", }, ], notes: [ { category: "description", text: "An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-11538", }, { category: "external", summary: "RHBZ#1852814", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852814", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-11538", url: "https://www.cve.org/CVERecord?id=CVE-2020-11538", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-11538", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-11538", }, ], release_date: "2020-07-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2", }, { cve: "CVE-2020-14040", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2020-06-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1853652", }, ], notes: [ { category: "description", text: "A denial of service vulnerability was found in the golang.org/x/text library. A library or application must use one of the vulnerable functions, such as unicode.Transform, transform.String, or transform.Byte, to be susceptible to this vulnerability. If an attacker is able to supply specific characters or strings to the vulnerable application, there is the potential to cause an infinite loop to occur using more memory, resulting in a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash", title: "Vulnerability summary", }, { category: "other", text: "* OpenShift ServiceMesh (OSSM) 1.0 is Out Of Support Scope (OOSS) for Moderate and Low impact vulnerabilities. Jaeger was packaged with ServiceMesh in 1.0, and hence is also marked OOSS, but the Jaeger-Operator is a standalone product and is affected by this vulnerability.\n\n* Because Service Telemetry Framework does not directly use unicode.UTF16, no update will be provided at this time for STF's sg-core-container.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-14040", }, { category: "external", summary: "RHBZ#1853652", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1853652", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-14040", url: "https://www.cve.org/CVERecord?id=CVE-2020-14040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-14040", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-14040", }, { category: "external", summary: "https://github.com/golang/go/issues/39491", url: "https://github.com/golang/go/issues/39491", }, { category: "external", summary: "https://groups.google.com/forum/#!topic/golang-announce/bXVeAmGOqz0", url: "https://groups.google.com/forum/#!topic/golang-announce/bXVeAmGOqz0", }, ], release_date: "2020-06-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2021-02-04T16:14:00+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2021:0420", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Quay-3:quay/clair-rhel8@sha256:32d29a9bc9e6f4690d75b432bc36de8555828c7ecabe405f50add88140a13b2d_amd64", "8Base-Quay-3:quay/quay-bridge-operator-bundle@sha256:cc204e9e439a64232673f7b3c1071ce7d1eee16c0f101688b276aa30eda55b06_amd64", "8Base-Quay-3:quay/quay-bridge-operator-rhel8@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-builder-qemu-rhcos-rhel8@sha256:324e4fd85bad0dd77f351b1c946040b0be639a63b4f90150e42739efde98a21c_amd64", "8Base-Quay-3:quay/quay-builder-rhel8@sha256:afc774b0aa286a1a72143ae0ae3491dc6f6005b487bac20c10495c8d98b82165_amd64", "8Base-Quay-3:quay/quay-container-security-operator-bundle@sha256:70581e0c0ff015d0cb09caeb0e7d76714cd7903df04ae428003c3f8dc3fdb4a3_amd64", "8Base-Quay-3:quay/quay-container-security-operator-rhel8@sha256:c3642669da261c8a7ee458fcba98abde522bf51e8695c30077840c787abc987e_amd64", "8Base-Quay-3:quay/quay-openshift-bridge-rhel8-operator@sha256:74af7b3f0fdd7c72395eb4628ded5c38f098bf11bccc5cfba2f4c5698911246c_amd64", "8Base-Quay-3:quay/quay-operator-bundle@sha256:87a68e36f451d24a493f25a2302897f7009ed7742e405e8e45988837c8b9c7f4_amd64", "8Base-Quay-3:quay/quay-operator-rhel8@sha256:7bf688be0d6a587c14316c6df81b3a59dba8c308842b67d016bedaedfad95c98_amd64", "8Base-Quay-3:quay/quay-rhel8@sha256:bdded901debc402b5e5b85bfd3476cc9feda213b846abb2d3ca91d6d91acb34f_amd64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash", }, ], }
rhsa-2020_0580
Vulnerability from csaf_redhat
Published
2020-02-24 12:59
Modified
2024-11-13 22:11
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:0580", url: "https://access.redhat.com/errata/RHSA-2020:0580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0580.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T22:11:15+00:00", generator: { date: "2024-11-13T22:11:15+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2020:0580", initial_release_date: "2020-02-24T12:59:24+00:00", revision_history: [ { date: "2020-02-24T12:59:24+00:00", number: "1", summary: "Initial version", }, { date: "2020-02-24T12:59:24+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T22:11:15+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-10.el8_1.src", product: { name: "python-pillow-0:5.1.1-10.el8_1.src", product_id: "python-pillow-0:5.1.1-10.el8_1.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-10.el8_1?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-10.el8_1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", }, product_reference: "python-pillow-0:5.1.1-10.el8_1.src", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2019-16865", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2019-11-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1774066", }, ], notes: [ { category: "description", text: "A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "RHBZ#1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16865", url: "https://www.cve.org/CVERecord?id=CVE-2019-16865", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", }, ], release_date: "2019-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, ], }
RHSA-2020:0580
Vulnerability from csaf_redhat
Published
2020-02-24 12:59
Modified
2024-11-13 22:11
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:0580", url: "https://access.redhat.com/errata/RHSA-2020:0580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0580.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T22:11:15+00:00", generator: { date: "2024-11-13T22:11:15+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2020:0580", initial_release_date: "2020-02-24T12:59:24+00:00", revision_history: [ { date: "2020-02-24T12:59:24+00:00", number: "1", summary: "Initial version", }, { date: "2020-02-24T12:59:24+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T22:11:15+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-10.el8_1.src", product: { name: "python-pillow-0:5.1.1-10.el8_1.src", product_id: "python-pillow-0:5.1.1-10.el8_1.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-10.el8_1?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_1?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-10.el8_1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", }, product_reference: "python-pillow-0:5.1.1-10.el8_1.src", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2019-16865", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2019-11-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1774066", }, ], notes: [ { category: "description", text: "A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "RHBZ#1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16865", url: "https://www.cve.org/CVERecord?id=CVE-2019-16865", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", }, ], release_date: "2019-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-24T12:59:24+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-0:5.1.1-10.el8_1.src", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python-pillow-debugsource-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-debuginfo-0:5.1.1-10.el8_1.x86_64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.aarch64", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.ppc64le", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.s390x", "AppStream-8.1.0.Z.MAIN.EUS:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, ], }
RHSA-2020:0566
Vulnerability from csaf_redhat
Published
2020-02-20 22:18
Modified
2024-11-13 22:11
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:0566", url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0566.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T22:11:33+00:00", generator: { date: "2024-11-13T22:11:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2020:0566", initial_release_date: "2020-02-20T22:18:13+00:00", revision_history: [ { date: "2020-02-20T22:18:13+00:00", number: "1", summary: "Initial version", }, { date: "2020-02-20T22:18:13+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T22:11:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product: { name: "Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_e4s:8.0::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-10.el8_0.src", product: { name: "python-pillow-0:5.1.1-10.el8_0.src", product_id: "python-pillow-0:5.1.1-10.el8_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-10.el8_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-10.el8_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", }, product_reference: "python-pillow-0:5.1.1-10.el8_0.src", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, ], }, vulnerabilities: [ { cve: "CVE-2019-16865", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2019-11-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1774066", }, ], notes: [ { category: "description", text: "A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "RHBZ#1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16865", url: "https://www.cve.org/CVERecord?id=CVE-2019-16865", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", }, ], release_date: "2019-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, ], }
rhsa-2020:0566
Vulnerability from csaf_redhat
Published
2020-02-20 22:18
Modified
2024-11-13 22:11
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)
* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)
* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c (CVE-2020-5311)\n\n* python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c (CVE-2020-5312)\n\n* python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service (CVE-2019-16865)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:0566", url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0566.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T22:11:33+00:00", generator: { date: "2024-11-13T22:11:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2020:0566", initial_release_date: "2020-02-20T22:18:13+00:00", revision_history: [ { date: "2020-02-20T22:18:13+00:00", number: "1", summary: "Initial version", }, { date: "2020-02-20T22:18:13+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T22:11:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product: { name: "Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_e4s:8.0::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-10.el8_0.src", product: { name: "python-pillow-0:5.1.1-10.el8_0.src", product_id: "python-pillow-0:5.1.1-10.el8_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-10.el8_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_0?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-10.el8_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-10.el8_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", }, product_reference: "python-pillow-0:5.1.1-10.el8_0.src", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)", product_id: "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", relates_to_product_reference: "AppStream-8.0.0.Z.E4S", }, ], }, vulnerabilities: [ { cve: "CVE-2019-16865", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2019-11-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1774066", }, ], notes: [ { category: "description", text: "A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "RHBZ#1774066", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1774066", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-16865", url: "https://www.cve.org/CVERecord?id=CVE-2019-16865", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-16865", }, ], release_date: "2019-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service", }, { cve: "CVE-2020-5311", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789535", }, ], notes: [ { category: "description", text: "An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", title: "Vulnerability summary", }, { category: "other", text: "This issue did not affect the versions of python-pillow and python-imaging as shipped with Red Hat Enterprise Linux 6, and 7 as they did not include the SGI RLE image decoder, where the flaw lies.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "RHBZ#1789535", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789535", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5311", url: "https://www.cve.org/CVERecord?id=CVE-2020-5311", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c", }, { cve: "CVE-2020-5312", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, discovery_date: "2020-01-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789533", }, ], notes: [ { category: "description", text: "A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "RHBZ#1789533", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789533", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-5312", url: "https://www.cve.org/CVERecord?id=CVE-2020-5312", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5312", }, ], release_date: "2020-01-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-02-20T22:18:13+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:0566", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.0.0.Z.E4S:python-pillow-0:5.1.1-10.el8_0.src", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python-pillow-debugsource-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-10.el8_0.x86_64", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.ppc64le", "AppStream-8.0.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-10.el8_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c", }, ], }
suse-ru-2020:2161-1
Vulnerability from csaf_suse
Published
2020-08-06 22:09
Modified
2020-08-06 22:09
Summary
Security update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-designate, openstack-heat-templates, openstack-ironic, openstack-keystone, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-neutron, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, python-Django1, python-Pillow, python-ardana-packager, python-heatclient, python-neutron-tempest-plugin, python-octavia-tempest-plugin, python-os-brick, python-oslo.messaging, python-pyroute2, python-urllib3, python-waitress, release-notes-suse-openstack-cloud, rubygem-activeresource, rubygem-json-1_7, rubygem-puma
Notes
Title of the patch
Security update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-designate, openstack-heat-templates, openstack-ironic, openstack-keystone, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-neutron, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, python-Django1, python-Pillow, python-ardana-packager, python-heatclient, python-neutron-tempest-plugin, python-octavia-tempest-plugin, python-os-brick, python-oslo.messaging, python-pyroute2, python-urllib3, python-waitress, release-notes-suse-openstack-cloud, rubygem-activeresource, rubygem-json-1_7, rubygem-puma
Description of the patch
This update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-designate, openstack-heat-templates, openstack-ironic, openstack-keystone, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-neutron, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, python-Django1, python-Pillow, python-ardana-packager, python-heatclient, python-neutron-tempest-plugin, python-octavia-tempest-plugin, python-os-brick, python-oslo.messaging, python-pyroute2, python-urllib3, python-waitress, release-notes-suse-openstack-cloud, rubygem-activeresource, rubygem-json-1_7, rubygem-puma fixes the following issues:
Security fixes included in this update:
ansible1:
- CVE-2019-3828: Fixed a path traversal in the fetch module (bsc#1126503).
grafana:
- CVE-2020-13379: Fixed an incorrect access control issue which could
lead to information leaks or denial of service (bsc#1172409).
- CVE-2020-12052: Fixed an cross site scripting vulnerability related to
the annotation popup (bsc#1170657).
kibana:
- CVE-2020-10743: Fixed a clickjacking vulnerability (bsc#1171909).
python-Django1 to 1.11.29:
- CVE-2020-13254: Fixed a data leakage via malformed memcached keys
(bsc#1172167).
- CVE-2020-13596: Fixed a cross site scripting vulnerability related to
the admin parameters of the ForeignKeyRawIdWidget (bsc#1172166).
- CVE-2020-7471: Fixed a SQL injection via StringAgg delimiter
(bsc#1161919).
- CVE-2020-9402: Fixed a SQL injection via tolerance parameter in GIS
functions and aggregates (bsc#1165022).
- CVE-2019-19844: Fixed a potential account hijack via password reset
form (bsc#1159447).
python-Pillow:
- CVE-2020-10177: Fixed multiple out-of-bounds reads in
libImaging/FliDecode.c (bsc#1173413).
- CVE-2020-11538: Fixed multiple out-of-bounds reads via a crafted JP2
files (bsc#1173420).
- CVE-2020-10994: Fixed multiple out-of-bounds reads via a crafted JP2
files (bsc#1173418).
- CVE-2020-10378: Fixed an out-of-bounds read when reading PCX files
(bsc#1173416).
- CVE-2019-16865: Fixed a denial of service with specially crafted
image files (bsc#1153191).
- CVE-2020-5311: Fixed an SGI buffer overflow (bsc#1160151).
- CVE-2020-5312: Fixed a buffer overflow in the PCX P mode (bsc#1160152).
- CVE-2020-5313: Fixed a buffer overflow related to FLI (bsc#1160153).
- CVE-2019-19911: Fixed a denial of service in FpxImagePlugin.py
(bsc#1160192).
python-waitress to version 1.4.3:
- CVE-2019-16785: Fixed HTTP request smuggling through LF vs CRLF
handling (bsc#1161088).
- CVE-2019-16786: Fixed HTTP request smuggling through invalid
Transfer-Encoding (bsc#1161089).
- CVE-2019-16789: Fixed HTTP Request Smuggling through invalid
whitespace characters (bsc#1160790).
- CVE-2019-16792: Fixed HTTP Request Smuggling through Content-Length
header handling (bsc#1161670).
rubygem-activeresource:
- CVE-2020-8151: Fixed possible information disclosure through specially
crafted requests (bsc#1171560).
Non security fixes:
Changes in ansible1.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Add 0001-Disallow-use-of-remote-home-directories-containing-..patch
(bsc#1126503, CVE-2019-3828)
Changes in ardana-ansible.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1591138508.e269bdb:
* Use internal endpoint for upload image (SOC-11294)
- Update to version 9.0+git.1589740968.d339a28:
* Reconfigure rabbitmq user permissions on update (SOC-11082)
- Update to version 9.0+git.1588953276.b8b5512:
* Fix incorrect prefix used to collect supportconfig files (bsc#1171273)
Changes in ardana-cobbler.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1588181228.bae3b1f:
* Ensure distro_signatures.json gets updated if needed (SOC-11249)
Changes in ardana-glance.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1593631708.9354a78:
* Idempotent cirros image upload to glance (SOC-11342)
Changes in ardana-input-model.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1589740948.c24fc0b:
* Add default rabbitmq exchange write permissions (SOC-11082)
Changes in ardana-logging.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1591193994.d93b668:
* kibana: set x-frame-options header (bsc#1171909)
Changes in ardana-manila.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1594158642.b5905e4:
* Ensure manila_upgrade_mode is initialised appropriately (SOC-11341)
- Update to version 9.0+git.1593516580.6c83767:
* Skip openstack-manila-share status check during upgrade (SOC-11341)
Changes in ardana-monasca.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1589385256.7fbfaaf:
* Fix stop start/stop logic (SOC-11209)
- Update to version 9.0+git.1588610558.98958f3:
* Fix monasca-thresh-wrapper status action (SOC-11209)
- Update to version 9.0+git.1588343155.0e67455:
* monasca-thresh restart and storm upgrade enhancements (SOC-11209)
Changes in ardana-mq.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1593618110.cbd1a37:
* Ensure epmd.service started/stopped independent of rabbitmq (SOC-6780)
- Update to version 9.0+git.1589715197.9196f62:
* Don't mirror reply queues (SOC-10317)
Changes in ardana-neutron.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1590756257.e09d54f:
* Update L3 rootwrap filters (SOC-11306)
Changes in ardana-octavia.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1590079609.a2ae6ab:
* fix octavia to glance communication over internal endpoint (SOC-11294)
Changes in ardana-tempest.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.0+git.1593033709.9495bb2:
* load-balancer: set check timeout to 120 seconds (SOC-11330)
- Update to version 9.0+git.1593010160.cb417d7:
* Blacklist neutron test_snat_external_ip test (SOC-11279)
- Update to version 9.0+git.1592341936.3b5ad41:
* Remove blacklisted octavia test (SOC-11289)
- Update to version 9.0+git.1592239656.b18289a:
* Blacklist NetworkMigration tests (SOC-11279)
- Update to version 9.0+git.1590429931.4fa308a:
* Install only needed tempest pluguins (SOC-11297)
- Update to version 9.0+git.1590164310.9e7888e:
* Enable tempest shelve tests (SOC-9775)
- Update to version 9.0+git.1590151267.16bddd9:
* Add NetworkMigration tests back in neutron filter (SOC-11279)
- Update to version 9.0+git.1589460689.e3bd243:
* Enable test_delete_policies_while_tenant_attached_to_net test (SOC-9235)
- Update to version 9.0+git.1589206665.aedb17d:
* Blacklist some NetworkMigration tests (SOC-11279)
Changes in crowbar-core.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 6.0+git.1594619891.b75a61d0d:
* upgrade: Do not stop pacemaker managed apache service (SOC-11298)
- Update to version 6.0+git.1593156244.533c05c01:
* Ignore CVE-2020-8184 (SOC-11299)
- Update to version 6.0+git.1592589539.e0cbb8c8f:
* provisioner: allow tftp access from admin network only (bsc#1019111)
- Update to version 6.0+git.1590650924.e7548b2ac:
* Ignore latest ruby-related CVEs in the CI (SOC-11299)
- Update to version 6.0+git.1589803358.48ba3f4a6:
* provisioner: Fix ssh key validation (SOC-11126)
- Update to version 6.0+git.1588062060.de79301bf:
* upgrade: disable zypper process check temporarily (SOC-11203)
Changes in crowbar-openstack.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 6.0+git.1591795073.49cb6400e:
* kibana: set x-frame-options header (bsc#1171909, CVE-2020-10743)
- Update to version 6.0+git.1591104467.7de344556:
* Restore undeprecated nova dhcp_domain option (bsc#1171594)
- Update to version 6.0+git.1590579980.5258ac04a:
* tempest: Enable shelve tests when using RBD ephemeral (SOC-11176)
- Update to version 6.0+git.1589957131.fcfccecc1:
* galera: Make sure checks are executed without password (bsc#1136928)
- Update to version 6.0+git.1589573559.3bf36a7cd:
* rabbitmq: sync startup definitions.json with recipe (SOC-11077,SOC-11274)
- Update to version 6.0+git.1589544034.e52fd938a:
* trove: fix rabbitmq connection URL (SOC-11286)
- Update to version 6.0+git.1589389407.5a306c6d3:
* tempest: remove port_admin_state_change workaround (SOC-10029)
- Update to version 6.0+git.1588686448.3c0060ca7:
* Fix monasca libvirt ping checks (bsc#1107190)
- Update to version 6.0+git.1588259003.a4e938422:
* run keystone_register on cluster founder only when HA (SOC-11248)
* ceilometer: Post API removal cleanup (SOC-10124)
- Update to version 6.0+git.1588096476.79154bb30:
* nova: run keystone_register on cluster founder only (SOC-11243)
Changes in grafana.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Add CVE-2020-13379.patch
* Security: fix unauthorized avatar proxying (bsc#1172409, CVE-2020-13379)
- Add 0001-CVE-2020-12052-bsc1170657-XSS-annotation-popup-vulnerability.patch
* Security: Fix annotation popup XSS vulnerability
(bsc#1170657, CVE-2020-12052)
- Add CVE-2019-15043.patch (SOC-10357, CVE-2019-15043, bsc#1148383)
- Create plugin directory and clean up (create in %install,
add to %files) handling of /var/lib/grafana/* and
Changes in kibana.SUSE_SLE-12-SP4_Update_Products_Cloud9:
- Add 0001-Configurable-custom-response-headers-for-server.patch
(bsc#1171909, CVE-2020-10743)
Changes in openstack-barbican.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- drop python-argparse buildrequires
Changes in openstack-ceilometer.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version ceilometer-11.1.1.dev7:
* [stable-only] Add confluent-kafka to test-requirements
- Update to version ceilometer-11.1.1.dev6:
* Temporary failures should be treated as temporary
Changes in openstack-ceilometer.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version ceilometer-11.1.1.dev7:
* [stable-only] Add confluent-kafka to test-requirements
- Update to version ceilometer-11.1.1.dev6:
* Temporary failures should be treated as temporary
Changes in openstack-cinder.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version cinder-13.0.10.dev12:
* Remove VxFlex OS credentials from connection\_properties
- Update to version cinder-13.0.10.dev11:
* [stable only] Add warning about rbd\_keyring\_conf
- Update to version cinder-13.0.10.dev10:
* VMAX Driver - Backport fix for Rocky and Queens
Changes in openstack-cinder.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- drop obsolete python-argparse buildrequires
- Update to version cinder-13.0.10.dev12:
* Remove VxFlex OS credentials from connection\_properties
- Update to version cinder-13.0.10.dev11:
* [stable only] Add warning about rbd\_keyring\_conf
- Update to version cinder-13.0.10.dev10:
* VMAX Driver - Backport fix for Rocky and Queens
Changes in openstack-dashboard.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version horizon-14.1.1.dev6:
* Fix tenant\_id for a new port
- Update to version horizon-14.1.1.dev5:
* Fix .zuul.yaml syntax errors
* Gate fix: use tempest-horizon 0.2.0 explicitly
* Authenticate before Authorization
Changes in openstack-designate.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version designate-7.0.2.dev2:
* Worker should send NOTIFY also to all servers in 'also\_notifies' pool settings
- Update to version designate-7.0.2.dev1:
* Pin stable/rocky tempest tests to 0.7.0 tag
7.0.1
Changes in openstack-designate.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version designate-7.0.2.dev2:
* Worker should send NOTIFY also to all servers in 'also\_notifies' pool settings
- Update to version designate-7.0.2.dev1:
* Pin stable/rocky tempest tests to 0.7.0 tag
7.0.1
Changes in openstack-heat-templates.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 0.0.0+git.1582270132.8a20477:
* Drop use of git.openstack.org
* Add example for running Zun container
* OpenDev Migration Patch
* Replace openstack.org git:// URLs with https://
* Add sample templates for Blazar
* Remove docs, deprecated hooks, tests
* Update the bugs link to storyboard
* Add an example of OS::Mistral::ExternalResource
Changes in openstack-ironic.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version ironic-11.1.5.dev6:
* Fix issue where server fails to reboot
- Update to version ironic-11.1.5.dev4:
* Fix SpanLength calculation for DRAC RAID configuration
Changes in openstack-ironic.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version ironic-11.1.5.dev6:
* Fix issue where server fails to reboot
- Update to version ironic-11.1.5.dev4:
* Fix SpanLength calculation for DRAC RAID configuration
Changes in openstack-keystone.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version keystone-14.2.1.dev4:
* Fix security issues with EC2 credentials
* Ensure OAuth1 authorized roles are respected
- Update to version keystone-14.2.1.dev2:
* Check timestamp of signed EC2 token request
- Update to version keystone-14.2.1.dev1:
* Add cadf auditing to credentials
14.2.0
Changes in openstack-keystone.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Remove patches (merged upstream)
* 0002-Check-timestamp-of-signed-EC2-token-request.patch
* 0002-Ensure-OAuth1-authorized-roles-are-respected.patch
* 0002-Fix-security-issues-with-EC2-credentials.patch
- Update to version keystone-14.2.1.dev4:
* Fix security issues with EC2 credentials
* Ensure OAuth1 authorized roles are respected
- Update to version keystone-14.2.1.dev2:
* Check timestamp of signed EC2 token request
- Add security patches (bsc#1171070, bsc#1171071, bsc#1171072):
* 0002-Check-timestamp-of-signed-EC2-token-request.patch
* 0002-Ensure-OAuth1-authorized-roles-are-respected.patch
* 0002-Fix-security-issues-with-EC2-credentials.patch
- Update to version keystone-14.2.1.dev1:
* Add cadf auditing to credentials
14.2.0
Changes in openstack-magnum.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- drop obsolete python-argparse buildrequires
Changes in openstack-manila.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version manila-7.4.2.dev31:
* [Unity]: Failed to delete cifs share if wrong access set
- Update to version manila-7.4.2.dev29:
* [devstack][ci] Move bgp setup to plugin
- Update to version manila-7.4.2.dev27:
* [devstack][ci] Modify firewall in ds-plugin
- Update to version manila-7.4.2.dev25:
* [devstack][ci] Set public network ID in tempest.conf
* Make manila-tempest-plugin installation optional
- Update to version manila-7.4.2.dev21:
* fix bug in consume from share
- Update to version manila-7.4.2.dev19:
* Conditionally restore default route in setup\_ipv6
- Update to version manila-7.4.2.dev18:
* [NetApp] Fix driver to honor standard extra specs
* [NetApp] cDOT to set valid QoS during migration
- Update to version manila-7.4.2.dev14:
* Remove provisioned calculation on non thin provision backends
- Update to version manila-7.4.2.dev12:
* [NetApp] Fix share replica failing for 'transfer in progress' error
* [NetApp] Fix share shrink error status
* Delete type access list when deleting types
* fix bug in quota checking
* Prevent share type deletion if linked to group types
Changes in openstack-manila.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- drop obsolete python-argparse buildrequires
- Update to version manila-7.4.2.dev31:
* [Unity]: Failed to delete cifs share if wrong access set
- Update to version manila-7.4.2.dev29:
* [devstack][ci] Move bgp setup to plugin
- Update to version manila-7.4.2.dev27:
* [devstack][ci] Modify firewall in ds-plugin
- Update to version manila-7.4.2.dev25:
* [devstack][ci] Set public network ID in tempest.conf
* Make manila-tempest-plugin installation optional
- Update to version manila-7.4.2.dev21:
* fix bug in consume from share
- Update to version manila-7.4.2.dev19:
* Conditionally restore default route in setup\_ipv6
- Update to version manila-7.4.2.dev18:
* [NetApp] Fix driver to honor standard extra specs
* [NetApp] cDOT to set valid QoS during migration
- Update to version manila-7.4.2.dev14:
* Remove provisioned calculation on non thin provision backends
- Update to version manila-7.4.2.dev12:
* [NetApp] Fix share replica failing for 'transfer in progress' error
* [NetApp] Fix share shrink error status
* Delete type access list when deleting types
* fix bug in quota checking
* Prevent share type deletion if linked to group types
Changes in openstack-monasca-agent.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- update to version 2.8.2~dev5
- Fix libvirt ping_checks documentation
- update to version 2.8.2~dev3
- Add debug output for libvirt ping checks
- Lockdown /bin/ip permissions for the monasca-agent (bsc#1107190)
- add addtional arguments to /bin/ip in sudoers
- Fix missing sudo privleges (bsc#1107190)
- add /bin/ip and /usr/bin/ovs-vsctl to monasca-agent sudoers
- update to version 2.8.2~dev2
- Remove incorrect assignment of ping_cmd to 'True'
- Do not copy /sbin/ip to /usr/bin/monasa-agent-ip
Changes in openstack-neutron.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version neutron-13.0.8.dev68:
* [DVR] Related routers should be included if are requested
- Update to version neutron-13.0.8.dev67:
* [EM releases] Move non-voting jobs to the experimental queue
* [OVS] Make QoS OVS agent deletion operations more resilient
* Add 'igmp\_snooping\_enable' config option for OVS agent
- Update to version neutron-13.0.8.dev61:
* Unnecessary routers should not be created
* Ensure that stale flows are cleaned from phys\_bridges
* Do not block connection between br-int and br-phys on startup
* Improve log message when port losts its vlan tag
* [DVR] Reconfigure re-created physical bridges for dvr routers
- Update to version neutron-13.0.8.dev52:
* Fix rocky gates, multiple fixes
- Update to version neutron-13.0.8.dev51:
* Dynamically increase l3 router process queue green pool size
- Update to version neutron-13.0.8.dev49:
* Allow usage of legacy 3rd-party interface drivers
- Update to version neutron-13.0.8.dev47:
* Router synch shouldn't return unrelated routers
- Update to version neutron-13.0.8.dev45:
* Only notify nova of port status changes if configured
- Update to version neutron-13.0.8.dev44:
* Add Rocky milestone tag for alembic migration revisions
- Update to version neutron-13.0.8.dev42:
* Cap pycodestyle to be < 2.6.0
* Report L3 extensions enabled in the L3 agent's config
- Update to version neutron-13.0.8.dev39:
* Adding LOG statements to debug 1838449
- Update to version neutron-13.0.8.dev38:
* Improve VLAN allocations synchronization
* [L3 HA] Add 'no\_track' option to VIPs in keepalived config
* Change ovs-agent iteration log level to INFO
* Refactor the L3 agent batch notifier
* Do not link up HA router gateway in backup node
Changes in openstack-neutron.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version neutron-13.0.8.dev68:
* [DVR] Related routers should be included if are requested
- Add 0001-Revert-Do-not-block-connection-between-br-int-and-br.patch (LP#1887148)
- Update to version neutron-13.0.8.dev67:
* [EM releases] Move non-voting jobs to the experimental queue
* [OVS] Make QoS OVS agent deletion operations more resilient
* Add 'igmp\_snooping\_enable' config option for OVS agent
- Update to version neutron-13.0.8.dev61:
* Unnecessary routers should not be created
* Ensure that stale flows are cleaned from phys\_bridges
* Do not block connection between br-int and br-phys on startup
* Improve log message when port losts its vlan tag
* [DVR] Reconfigure re-created physical bridges for dvr routers
- Update to version neutron-13.0.8.dev52:
* Fix rocky gates, multiple fixes
- Update to version neutron-13.0.8.dev51:
* Dynamically increase l3 router process queue green pool size
- Update to version neutron-13.0.8.dev49:
* Allow usage of legacy 3rd-party interface drivers
- Update to version neutron-13.0.8.dev47:
* Router synch shouldn't return unrelated routers
- Update to version neutron-13.0.8.dev45:
* Only notify nova of port status changes if configured
- Update to version neutron-13.0.8.dev44:
* Add Rocky milestone tag for alembic migration revisions
- Update to version neutron-13.0.8.dev42:
* Cap pycodestyle to be < 2.6.0
* Report L3 extensions enabled in the L3 agent's config
- Update to version neutron-13.0.8.dev39:
* Adding LOG statements to debug 1838449
- Update to version neutron-13.0.8.dev38:
* Improve VLAN allocations synchronization
* [L3 HA] Add 'no\_track' option to VIPs in keepalived config
* Change ovs-agent iteration log level to INFO
* Refactor the L3 agent batch notifier
* Do not link up HA router gateway in backup node
Changes in openstack-neutron-vsphere.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- The networking-vsphere repo got moved from github to opendev.org.
We no longer able to automatically generate changelogs from
opendev.org as it doesn't provide the same API as github.
We'll need to manually update it from now on.
- update to version 2.0.1~dev167
- Making networking-vsphere run under Python3
- OVSvApp Security Group Changes
Changes in openstack-nova.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version nova-18.3.1.dev38:
* libvirt: Don't delete disks on shared storage during evacuate
* Add functional test for bug 1550919
- Update to version nova-18.3.1.dev36:
* Fix os\_CODENAME detection and repo refresh during ceph tests
- Update to version nova-18.3.1.dev35:
* Update scheduler instance info at confirm resize
- Update to version nova-18.3.1.dev33:
* Reproduce bug 1869050
- Update to version nova-18.3.1.dev31:
* Revert 'nova shared storage: rbd is always shared storage'
- Update to version nova-18.3.1.dev29:
* Clean up allocation if unshelve fails due to neutron
* Reset the cell cache for database access in Service
* Reproduce bug 1862633
* Make RBD imagebackend flatten method idempotent
- Update to version nova-18.3.1.dev21:
* Add config option for neutron client retries
- Update to version nova-18.3.1.dev19:
* Add retry to cinder API calls related to volume detach
- Update to version nova-18.3.1.dev18:
* Lowercase ironic driver hash ring and ignore case in cache
Changes in openstack-nova.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version nova-18.3.1.dev38:
* libvirt: Don't delete disks on shared storage during evacuate
* Add functional test for bug 1550919
- Update to version nova-18.3.1.dev36:
* Fix os\_CODENAME detection and repo refresh during ceph tests
- Update to version nova-18.3.1.dev35:
* Update scheduler instance info at confirm resize
- Update to version nova-18.3.1.dev33:
* Reproduce bug 1869050
- Update to version nova-18.3.1.dev31:
* Revert 'nova shared storage: rbd is always shared storage'
- Update to version nova-18.3.1.dev29:
* Clean up allocation if unshelve fails due to neutron
* Reset the cell cache for database access in Service
* Reproduce bug 1862633
* Make RBD imagebackend flatten method idempotent
- Update to version nova-18.3.1.dev21:
* Add config option for neutron client retries
- Update to version nova-18.3.1.dev19:
* Add retry to cinder API calls related to volume detach
- Update to version nova-18.3.1.dev18:
* Lowercase ironic driver hash ring and ignore case in cache
Changes in openstack-octavia.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update patch for SUSE distro support
* Fix osutils.py to handle secondary interfaces (SOC-11289)
* Add 020-amphora-logging.conf for configuring log targets
- Update to version octavia-3.2.3.dev7:
* Fix the amphora noop driver
* Validate resource access when creating loadbalancer or member
- Update to version octavia-3.2.3.dev3:
* Fix Rocky v2 scenario and grenade jobs
Changes in openstack-octavia-amphora-image.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update image to 0.1.4 to include latest changes
Changes in openstack-resource-agents.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 1.0+git.1569436425.8b9c49f:
* Add a configurable delay to Nova Evacuate calls
* OpenDev Migration Patch
* NovaEvacuate: fix a syntax error
* NovaEvacuate: Support the new split-out IHA fence agents with backwards compatibility
* NovaEvacuate: Correctly handle stopped hypervisors
* neutron-ha-tool: do not replicate dhcp
* NovaCompute: Support parsing host option from /etc/nova/nova.conf.d
* NovaCompute: Use variable to avoid calling crudini a second time
* NovaEvacuate: Allow debug logging to be turned on easily
Changes in python-Django1.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 1.11.29 (bsc#1161919, CVE-2020-7471, bsc#1165022, CVE-2020-9402, bsc#1159447, CVE-2019-19844)
* Fixed CVE-2020-9402 -- Properly escaped tolerance parameter in GIS functions and aggregates on Oracle.
* Pinned PyYAML < 5.3 in test requirements.
* Fixed CVE-2020-7471 -- Properly escaped StringAgg(delimiter) parameter.
* Fixed timezones tests for PyYAML 5.3+.
* Fixed CVE-2019-19844 -- Used verified user email for password reset requests.
* Fixed #31073 -- Prevented CheckboxInput.get_context() from mutating attrs.
* Fixed #30826 -- Fixed crash of many JSONField lookups when one hand side is key transform.
* Fixed #30769 -- Fixed a crash when filtering against a subquery JSON/HStoreField annotation.
- Security fixes (bsc#1172167, bsc#1172166, CVE-2020-13254, CVE-2020-13596)
* Added patch CVE-2020-13254.patch
* Added patch CVE-2020-13596.patch
Changes in python-Pillow.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Add 010-Fix-OOB-reads-in-FLI-decoding.patch
* From upstream, backported
* Fixes CVE-2020-10177, bsc#1173413
- Add 011-Fix-buffer-overflow-in-SGI-RLE-decoding.patch
* From upstream, backported
* Fixes CVE-2020-11538, bsc#1173420
- Add 012-Fix-bounds-overflow-in-JPEG-2000-decoding.patch
* From upstream, backported
* Fixes CVE-2020-10994, bsc#1173418
- Add 013-Fix-bounds-overflow-in-PCX-decoding.patch
* From upstream, backported
* Fixes CVE-2020-10378, bsc#1173416
- Remove decompression_bomb.gif and relevant test case to avoid
ClamAV scan alerts during build
- Add 001-Corrected-negative-seeks.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 002-Added-decompression-bomb-checks.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 003-Raise-error-if-dimension-is-a-string.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 004-Catch-buffer-overruns.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 005-Catch-PCX-P-mode-buffer-overrun.patch
* From upstream, backported
* Fixes CVE-2020-5312, bsc#1160152
- Add 006-Catch-SGI-buffer-overruns.patch
* From upstream, backported
* Fixes CVE-2020-5311, bsc#1160151
- Add 007-Ensure-previous-FLI-frame-is-loaded.patch
* From upstream, backported
* Fixes https://github.com/python-pillow/Pillow/issues/2649
* Uncovers CVE-2020-5313, bsc#1160153
- Add 008-Catch-FLI-buffer-overrun.patch
* From upstream, backported
* Fixes CVE-2020-5313, bsc#1160153
- Add 009-Invalid-number-of-bands-in-FPX-image.patch
* From upstream, backported
* Fixes CVE-2019-19911, bsc#1160192
Changes in python-ardana-packager.SUSE_SLE-12-SP4_Update_Products_Cloud9:
- fetch updated nova_host_aggregate from git
- Add missing novaclient required domain entries (bsc#1174006)
- update from git repo
- Add missing novaclient required domain entries (bsc#1174006)
Changes in python-heatclient.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- update to version 1.16.3
- Replace openstack.org git:// URLs with https://
- OpenDev Migration Patch
Changes in python-neutron-tempest-plugin.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- added 0002-Ensure-that-external-network-dont-have-any-ports-before-deletion.patch
Changes in python-octavia-tempest-plugin.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Fix broken compile options for httpd.bin
Changes in python-os-brick.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Apply patches to resolve CVE-2020-10755 (bsc#1172522)
- 0001-Remove-VxFlex-OS-credentials-from-connection_propert.patch
- 0002-Fix-Remove-VxFlex-OS-credentials-regression.patch
Changes in python-oslo.messaging.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- added 0001-Use-default-exchange-for-direct-messaging.patch
(SOC-11082, SOC-11274, bsc#1159046)
Changes in python-pyroute2.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- update to 0.5.2
* ndb: read-only DB prototype
* remote: support communication via stdio
* general: fix async keyword -- Python 3.7 compatibility
* <https://github.com/svinota/pyroute2/issues/467>
* <https://bugzilla.redhat.com/show_bug.cgi?id=1583800>
* iproute: support monitoring on BSD systems via PF_ROUTE
* rtnl: support for SQL schema in message classes
* nl80211: improvements
* <https://github.com/svinota/pyroute2/issues/512>
* <https://github.com/svinota/pyroute2/issues/514>
* <https://github.com/svinota/pyroute2/issues/515>
* netlink: support generators
- update to 0.5.1
* ipdb: #310 -- route keying fix
* ipdb: #483, #484 -- callback internals change
* ipdb: #499 -- eventloop interface
* ipdb: #500 -- fix non-default :: routes
* netns: #448 -- API change: setns() doesn't remove FD
* netns: #504 -- fix resource leakage
* bsd: initial commits
- update to 0.5.0
* ACHTUNG: ipdb commit logic is changed
* ipdb: do not drop failed transactions
* ipdb: #388 -- normalize IPv6 addresses
* ipdb: #391 -- support both IPv4 and IPv6 default routes
* ipdb: #392 -- fix MPLS route key reference
* ipdb: #394 -- correctly work with route priorities
* ipdb: #408 -- fix IPv6 routes in tables >= 256
* ipdb: #416 -- fix VRF interfaces creation
* ipset: multiple improvements
* tuntap: #469 -- support s390x arch
* nlsocket: #443 -- fix socket methods resolve order for Python2
* netns: non-destructive `netns.create()`
Changes in python-urllib3.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Skip test_source_address_error as we raise different error with
fixes that we provide in new python2/3
- Update python-urllib3-recent-date.patch to have RECENT_DATE within
the needed boundaries for the test suite.
Changes in python-waitress.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- update to 1.4.3 to include fixes for:
* CVE-2019-16785 / bsc#1161088
* CVE-2019-16786 / bsc#1161089
* CVE-2019-16789 / bsc#1160790
* CVE-2019-16792 / bsc#1161670
- make sure UTF8 locale is used when runnning tests
* Sometimes functional tests executed in python3 failed if stdout was not
set to UTF-8. The error message was:
ValueError: underlying buffer has been detached
- %python3_only -> %python_alternative
- update to 1.4.3
* Waitress did not properly validate that the HTTP headers it received
were properly formed, thereby potentially allowing a front-end server
to treat a request different from Waitress. This could lead to HTTP
request smuggling/splitting.
- drop patch local-intersphinx-inventories.patch
* it was commented out, anyway
- update to 1.4.0:
- Waitress used to slam the door shut on HTTP pipelined requests without
setting the ``Connection: close`` header as appropriate in the response. This
is of course not very friendly. Waitress now explicitly sets the header when
responding with an internally generated error such as 400 Bad Request or 500
Internal Server Error to notify the remote client that it will be closing the
connection after the response is sent.
- Waitress no longer allows any spaces to exist between the header field-name
and the colon. While waitress did not strip the space and thereby was not
vulnerable to any potential header field-name confusion, it should have sent
back a 400 Bad Request. See https://github.com/Pylons/waitress/issues/273
- CRLR handling Security fixes
- update to 1.3.1
* Waitress won’t accidentally throw away part of the path if it
starts with a double slash
- version update to 1.3.0
Deprecations
~~~~~~~~~~~~
- The ``send_bytes`` adjustment now defaults to ``1`` and is deprecated
pending removal in a future release.
and https://github.com/Pylons/waitress/pull/246
Features
~~~~~~~~
- Add a new ``outbuf_high_watermark`` adjustment which is used to apply
backpressure on the ``app_iter`` to avoid letting it spin faster than data
can be written to the socket. This stabilizes responses that iterate quickly
with a lot of data.
See https://github.com/Pylons/waitress/pull/242
- Stop early and close the ``app_iter`` when attempting to write to a closed
socket due to a client disconnect. This should notify a long-lived streaming
response when a client hangs up.
See https://github.com/Pylons/waitress/pull/238
and https://github.com/Pylons/waitress/pull/240
and https://github.com/Pylons/waitress/pull/241
- Adjust the flush to output ``SO_SNDBUF`` bytes instead of whatever was
set in the ``send_bytes`` adjustment. ``send_bytes`` now only controls how
much waitress will buffer internally before flushing to the kernel, whereas
previously it used to also throttle how much data was sent to the kernel.
This change enables a streaming ``app_iter`` containing small chunks to
still be flushed efficiently.
See https://github.com/Pylons/waitress/pull/246
Bugfixes
~~~~~~~~
- Upon receiving a request that does not include HTTP/1.0 or HTTP/1.1 we will
no longer set the version to the string value 'None'. See
https://github.com/Pylons/waitress/pull/252 and
https://github.com/Pylons/waitress/issues/110
- When a client closes a socket unexpectedly there was potential for memory
leaks in which data was written to the buffers after they were closed,
causing them to reopen.
See https://github.com/Pylons/waitress/pull/239
- Fix the queue depth warnings to only show when all threads are busy.
See https://github.com/Pylons/waitress/pull/243
and https://github.com/Pylons/waitress/pull/247
- Trigger the ``app_iter`` to close as part of shutdown. This will only be
noticeable for users of the internal server api. In more typical operations
the server will die before benefiting from these changes.
See https://github.com/Pylons/waitress/pull/245
- Fix a bug in which a streaming ``app_iter`` may never cleanup data that has
already been sent. This would cause buffers in waitress to grow without
bounds. These buffers now properly rotate and release their data.
See https://github.com/Pylons/waitress/pull/242
- Fix a bug in which non-seekable subclasses of ``io.IOBase`` would trigger
an exception when passed to the ``wsgi.file_wrapper`` callback.
See https://github.com/Pylons/waitress/pull/249
- Trim marketing wording and other platform mentions.
- Add fetch-intersphinx-inventories.sh to sources
- Add local-intersphinx-inventories.patch for generating the docs
correctly
- update to version 1.2.1:
too many changes to list here, see:
https://github.com/Pylons/waitress/blob/master/CHANGES.txt
or even:
https://github.com/Pylons/waitress/commits/master
- Remove superfluous devel dependency for noarch package
Changes in rubygem-activeresource.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Add bsc#1171560-CVE-2020-8151-encode-id-param.patch
Prevent possible information disclosure issue that could allow
an attacker to create specially crafted requests to access data
in an unexpected way (bsc#1171560 CVE-2020-8151))_
Changes in rubygem-json-1_7.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Add CVE-2020-10663.patch (CVE-2020-10663, bsc#1167244)
Changes in rubygem-puma.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Fix indentation in gem2rpm.yml_
- Add CVE-2020-11077.patch (bsc#1172175, CVE-2020-11077)
- Add chunked-request-handling.patch (needed for CVE-2020-11076.patch)
- Add CVE-2020-11076.patch (bsc#1172176, CVE-2020-11076)
- Add all patches to gem2rpm.yml
Changes in release-notes-suse-openstack-cloud.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- Update to version 9.20200610:
* Terraform support validation release note added (SOC-11314)
- Update to version 9.20200504:
* language change for accuracy - MANAGEMENT network group (SOC-10106)
* add limitation about MANAGEMENT network group (SOC-10106)
- Update to version 9.20200429:
* Mark identity api v2 as deprecated (bsc#1163446)
- Update to version 9.20200428:
* Update release notes to indicate Octavia support has shipped (SOC-11241)
Patchnames
SUSE-2020-2161,SUSE-OpenStack-Cloud-9-2020-2161,SUSE-OpenStack-Cloud-Crowbar-9-2020-2161
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-designate, openstack-heat-templates, openstack-ironic, openstack-keystone, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-neutron, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, python-Django1, python-Pillow, python-ardana-packager, python-heatclient, python-neutron-tempest-plugin, python-octavia-tempest-plugin, python-os-brick, python-oslo.messaging, python-pyroute2, python-urllib3, python-waitress, release-notes-suse-openstack-cloud, rubygem-activeresource, rubygem-json-1_7, rubygem-puma", title: "Title of the patch", }, { category: "description", text: "This update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-designate, openstack-heat-templates, openstack-ironic, openstack-keystone, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-neutron, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, python-Django1, python-Pillow, python-ardana-packager, python-heatclient, python-neutron-tempest-plugin, python-octavia-tempest-plugin, python-os-brick, python-oslo.messaging, python-pyroute2, python-urllib3, python-waitress, release-notes-suse-openstack-cloud, rubygem-activeresource, rubygem-json-1_7, rubygem-puma fixes the following issues:\n\nSecurity fixes included in this update:\n\nansible1:\n- CVE-2019-3828: Fixed a path traversal in the fetch module (bsc#1126503).\n\ngrafana:\n- CVE-2020-13379: Fixed an incorrect access control issue which could\nlead to information leaks or denial of service (bsc#1172409).\n- CVE-2020-12052: Fixed an cross site scripting vulnerability related to\nthe annotation popup (bsc#1170657).\n\nkibana:\n- CVE-2020-10743: Fixed a clickjacking vulnerability (bsc#1171909).\n\npython-Django1 to 1.11.29:\n- CVE-2020-13254: Fixed a data leakage via malformed memcached keys\n(bsc#1172167).\n- CVE-2020-13596: Fixed a cross site scripting vulnerability related to\nthe admin parameters of the ForeignKeyRawIdWidget (bsc#1172166).\n- CVE-2020-7471: Fixed a SQL injection via StringAgg delimiter\n(bsc#1161919).\n- CVE-2020-9402: Fixed a SQL injection via tolerance parameter in GIS\nfunctions and aggregates (bsc#1165022).\n- CVE-2019-19844: Fixed a potential account hijack via password reset\nform (bsc#1159447).\n\npython-Pillow:\n- CVE-2020-10177: Fixed multiple out-of-bounds reads in\nlibImaging/FliDecode.c (bsc#1173413).\n- CVE-2020-11538: Fixed multiple out-of-bounds reads via a crafted JP2\nfiles (bsc#1173420).\n- CVE-2020-10994: Fixed multiple out-of-bounds reads via a crafted JP2\nfiles (bsc#1173418).\n- CVE-2020-10378: Fixed an out-of-bounds read when reading PCX files\n(bsc#1173416).\n- CVE-2019-16865: Fixed a denial of service with specially crafted\nimage files (bsc#1153191).\n- CVE-2020-5311: Fixed an SGI buffer overflow (bsc#1160151).\n- CVE-2020-5312: Fixed a buffer overflow in the PCX P mode (bsc#1160152).\n- CVE-2020-5313: Fixed a buffer overflow related to FLI (bsc#1160153).\n- CVE-2019-19911: Fixed a denial of service in FpxImagePlugin.py\n(bsc#1160192).\n\npython-waitress to version 1.4.3:\n- CVE-2019-16785: Fixed HTTP request smuggling through LF vs CRLF\nhandling (bsc#1161088).\n- CVE-2019-16786: Fixed HTTP request smuggling through invalid\nTransfer-Encoding (bsc#1161089).\n- CVE-2019-16789: Fixed HTTP Request Smuggling through invalid\nwhitespace characters (bsc#1160790).\n- CVE-2019-16792: Fixed HTTP Request Smuggling through Content-Length\nheader handling (bsc#1161670).\n\nrubygem-activeresource:\n- CVE-2020-8151: Fixed possible information disclosure through specially\ncrafted requests (bsc#1171560).\n\nNon security fixes:\n\nChanges in ansible1.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Add 0001-Disallow-use-of-remote-home-directories-containing-..patch\n (bsc#1126503, CVE-2019-3828)\n\nChanges in ardana-ansible.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1591138508.e269bdb:\n * Use internal endpoint for upload image (SOC-11294)\n\n- Update to version 9.0+git.1589740968.d339a28:\n * Reconfigure rabbitmq user permissions on update (SOC-11082)\n\n- Update to version 9.0+git.1588953276.b8b5512:\n * Fix incorrect prefix used to collect supportconfig files (bsc#1171273)\n\nChanges in ardana-cobbler.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1588181228.bae3b1f:\n * Ensure distro_signatures.json gets updated if needed (SOC-11249)\n\nChanges in ardana-glance.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1593631708.9354a78:\n * Idempotent cirros image upload to glance (SOC-11342)\n\nChanges in ardana-input-model.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1589740948.c24fc0b:\n * Add default rabbitmq exchange write permissions (SOC-11082)\n\nChanges in ardana-logging.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1591193994.d93b668:\n * kibana: set x-frame-options header (bsc#1171909)\n\nChanges in ardana-manila.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1594158642.b5905e4:\n * Ensure manila_upgrade_mode is initialised appropriately (SOC-11341)\n\n- Update to version 9.0+git.1593516580.6c83767:\n * Skip openstack-manila-share status check during upgrade (SOC-11341)\n\nChanges in ardana-monasca.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1589385256.7fbfaaf:\n * Fix stop start/stop logic (SOC-11209)\n\n- Update to version 9.0+git.1588610558.98958f3:\n * Fix monasca-thresh-wrapper status action (SOC-11209)\n\n- Update to version 9.0+git.1588343155.0e67455:\n * monasca-thresh restart and storm upgrade enhancements (SOC-11209)\n\nChanges in ardana-mq.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1593618110.cbd1a37:\n * Ensure epmd.service started/stopped independent of rabbitmq (SOC-6780)\n\n- Update to version 9.0+git.1589715197.9196f62:\n * Don't mirror reply queues (SOC-10317)\n\nChanges in ardana-neutron.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1590756257.e09d54f:\n * Update L3 rootwrap filters (SOC-11306)\n\nChanges in ardana-octavia.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1590079609.a2ae6ab:\n * fix octavia to glance communication over internal endpoint (SOC-11294)\n\nChanges in ardana-tempest.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.0+git.1593033709.9495bb2:\n * load-balancer: set check timeout to 120 seconds (SOC-11330)\n\n- Update to version 9.0+git.1593010160.cb417d7:\n * Blacklist neutron test_snat_external_ip test (SOC-11279)\n\n- Update to version 9.0+git.1592341936.3b5ad41:\n * Remove blacklisted octavia test (SOC-11289)\n\n- Update to version 9.0+git.1592239656.b18289a:\n * Blacklist NetworkMigration tests (SOC-11279)\n\n- Update to version 9.0+git.1590429931.4fa308a:\n * Install only needed tempest pluguins (SOC-11297)\n\n- Update to version 9.0+git.1590164310.9e7888e:\n * Enable tempest shelve tests (SOC-9775)\n\n- Update to version 9.0+git.1590151267.16bddd9:\n * Add NetworkMigration tests back in neutron filter (SOC-11279)\n\n- Update to version 9.0+git.1589460689.e3bd243:\n * Enable test_delete_policies_while_tenant_attached_to_net test (SOC-9235)\n\n- Update to version 9.0+git.1589206665.aedb17d:\n * Blacklist some NetworkMigration tests (SOC-11279)\n\nChanges in crowbar-core.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 6.0+git.1594619891.b75a61d0d:\n * upgrade: Do not stop pacemaker managed apache service (SOC-11298)\n\n- Update to version 6.0+git.1593156244.533c05c01:\n * Ignore CVE-2020-8184 (SOC-11299)\n\n- Update to version 6.0+git.1592589539.e0cbb8c8f:\n * provisioner: allow tftp access from admin network only (bsc#1019111)\n\n- Update to version 6.0+git.1590650924.e7548b2ac:\n * Ignore latest ruby-related CVEs in the CI (SOC-11299)\n\n- Update to version 6.0+git.1589803358.48ba3f4a6:\n * provisioner: Fix ssh key validation (SOC-11126)\n\n- Update to version 6.0+git.1588062060.de79301bf:\n * upgrade: disable zypper process check temporarily (SOC-11203)\n\nChanges in crowbar-openstack.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 6.0+git.1591795073.49cb6400e:\n * kibana: set x-frame-options header (bsc#1171909, CVE-2020-10743)\n\n- Update to version 6.0+git.1591104467.7de344556:\n * Restore undeprecated nova dhcp_domain option (bsc#1171594)\n\n- Update to version 6.0+git.1590579980.5258ac04a:\n * tempest: Enable shelve tests when using RBD ephemeral (SOC-11176)\n\n- Update to version 6.0+git.1589957131.fcfccecc1:\n * galera: Make sure checks are executed without password (bsc#1136928)\n\n- Update to version 6.0+git.1589573559.3bf36a7cd:\n * rabbitmq: sync startup definitions.json with recipe (SOC-11077,SOC-11274)\n\n- Update to version 6.0+git.1589544034.e52fd938a:\n * trove: fix rabbitmq connection URL (SOC-11286)\n\n- Update to version 6.0+git.1589389407.5a306c6d3:\n * tempest: remove port_admin_state_change workaround (SOC-10029)\n\n- Update to version 6.0+git.1588686448.3c0060ca7:\n * Fix monasca libvirt ping checks (bsc#1107190)\n\n- Update to version 6.0+git.1588259003.a4e938422:\n * run keystone_register on cluster founder only when HA (SOC-11248)\n * ceilometer: Post API removal cleanup (SOC-10124)\n\n- Update to version 6.0+git.1588096476.79154bb30:\n * nova: run keystone_register on cluster founder only (SOC-11243)\n\nChanges in grafana.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Add CVE-2020-13379.patch\n * Security: fix unauthorized avatar proxying (bsc#1172409, CVE-2020-13379)\n\n- Add 0001-CVE-2020-12052-bsc1170657-XSS-annotation-popup-vulnerability.patch\n * Security: Fix annotation popup XSS vulnerability\n (bsc#1170657, CVE-2020-12052)\n\n- Add CVE-2019-15043.patch (SOC-10357, CVE-2019-15043, bsc#1148383)\n- Create plugin directory and clean up (create in %install,\n add to %files) handling of /var/lib/grafana/* and\nChanges in kibana.SUSE_SLE-12-SP4_Update_Products_Cloud9:\n- Add 0001-Configurable-custom-response-headers-for-server.patch\n (bsc#1171909, CVE-2020-10743)\n\nChanges in openstack-barbican.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- drop python-argparse buildrequires\n\nChanges in openstack-ceilometer.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version ceilometer-11.1.1.dev7:\n * [stable-only] Add confluent-kafka to test-requirements\n\n- Update to version ceilometer-11.1.1.dev6:\n * Temporary failures should be treated as temporary\n\nChanges in openstack-ceilometer.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version ceilometer-11.1.1.dev7:\n * [stable-only] Add confluent-kafka to test-requirements\n\n- Update to version ceilometer-11.1.1.dev6:\n * Temporary failures should be treated as temporary\n\nChanges in openstack-cinder.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version cinder-13.0.10.dev12:\n * Remove VxFlex OS credentials from connection\\_properties\n\n- Update to version cinder-13.0.10.dev11:\n * [stable only] Add warning about rbd\\_keyring\\_conf\n\n- Update to version cinder-13.0.10.dev10:\n * VMAX Driver - Backport fix for Rocky and Queens\n\nChanges in openstack-cinder.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- drop obsolete python-argparse buildrequires\n\n- Update to version cinder-13.0.10.dev12:\n * Remove VxFlex OS credentials from connection\\_properties\n\n- Update to version cinder-13.0.10.dev11:\n * [stable only] Add warning about rbd\\_keyring\\_conf\n\n- Update to version cinder-13.0.10.dev10:\n * VMAX Driver - Backport fix for Rocky and Queens\n\nChanges in openstack-dashboard.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version horizon-14.1.1.dev6:\n * Fix tenant\\_id for a new port\n\n- Update to version horizon-14.1.1.dev5:\n * Fix .zuul.yaml syntax errors\n * Gate fix: use tempest-horizon 0.2.0 explicitly\n * Authenticate before Authorization\n\nChanges in openstack-designate.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version designate-7.0.2.dev2:\n * Worker should send NOTIFY also to all servers in 'also\\_notifies' pool settings\n\n- Update to version designate-7.0.2.dev1:\n * Pin stable/rocky tempest tests to 0.7.0 tag\n 7.0.1\n\nChanges in openstack-designate.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version designate-7.0.2.dev2:\n * Worker should send NOTIFY also to all servers in 'also\\_notifies' pool settings\n\n- Update to version designate-7.0.2.dev1:\n * Pin stable/rocky tempest tests to 0.7.0 tag\n 7.0.1\n\nChanges in openstack-heat-templates.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 0.0.0+git.1582270132.8a20477:\n * Drop use of git.openstack.org\n * Add example for running Zun container\n * OpenDev Migration Patch\n * Replace openstack.org git:// URLs with https://\n * Add sample templates for Blazar\n * Remove docs, deprecated hooks, tests\n * Update the bugs link to storyboard\n * Add an example of OS::Mistral::ExternalResource\n\nChanges in openstack-ironic.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version ironic-11.1.5.dev6:\n * Fix issue where server fails to reboot\n\n- Update to version ironic-11.1.5.dev4:\n * Fix SpanLength calculation for DRAC RAID configuration\n\nChanges in openstack-ironic.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version ironic-11.1.5.dev6:\n * Fix issue where server fails to reboot\n\n- Update to version ironic-11.1.5.dev4:\n * Fix SpanLength calculation for DRAC RAID configuration\n\nChanges in openstack-keystone.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version keystone-14.2.1.dev4:\n * Fix security issues with EC2 credentials\n * Ensure OAuth1 authorized roles are respected\n\n- Update to version keystone-14.2.1.dev2:\n * Check timestamp of signed EC2 token request\n\n- Update to version keystone-14.2.1.dev1:\n * Add cadf auditing to credentials\n 14.2.0\n\n\nChanges in openstack-keystone.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Remove patches (merged upstream)\n * 0002-Check-timestamp-of-signed-EC2-token-request.patch\n * 0002-Ensure-OAuth1-authorized-roles-are-respected.patch\n * 0002-Fix-security-issues-with-EC2-credentials.patch\n\n- Update to version keystone-14.2.1.dev4:\n * Fix security issues with EC2 credentials\n * Ensure OAuth1 authorized roles are respected\n\n- Update to version keystone-14.2.1.dev2:\n * Check timestamp of signed EC2 token request\n\n- Add security patches (bsc#1171070, bsc#1171071, bsc#1171072):\n * 0002-Check-timestamp-of-signed-EC2-token-request.patch\n * 0002-Ensure-OAuth1-authorized-roles-are-respected.patch\n * 0002-Fix-security-issues-with-EC2-credentials.patch\n\n- Update to version keystone-14.2.1.dev1:\n * Add cadf auditing to credentials\n 14.2.0\n\nChanges in openstack-magnum.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- drop obsolete python-argparse buildrequires\n\nChanges in openstack-manila.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version manila-7.4.2.dev31:\n * [Unity]: Failed to delete cifs share if wrong access set\n\n- Update to version manila-7.4.2.dev29:\n * [devstack][ci] Move bgp setup to plugin\n\n- Update to version manila-7.4.2.dev27:\n * [devstack][ci] Modify firewall in ds-plugin\n\n- Update to version manila-7.4.2.dev25:\n * [devstack][ci] Set public network ID in tempest.conf\n * Make manila-tempest-plugin installation optional\n\n- Update to version manila-7.4.2.dev21:\n * fix bug in consume from share\n\n- Update to version manila-7.4.2.dev19:\n * Conditionally restore default route in setup\\_ipv6\n\n- Update to version manila-7.4.2.dev18:\n * [NetApp] Fix driver to honor standard extra specs\n * [NetApp] cDOT to set valid QoS during migration\n\n- Update to version manila-7.4.2.dev14:\n * Remove provisioned calculation on non thin provision backends\n\n- Update to version manila-7.4.2.dev12:\n * [NetApp] Fix share replica failing for 'transfer in progress' error\n * [NetApp] Fix share shrink error status\n * Delete type access list when deleting types\n * fix bug in quota checking\n * Prevent share type deletion if linked to group types\n\nChanges in openstack-manila.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- drop obsolete python-argparse buildrequires\n\n- Update to version manila-7.4.2.dev31:\n * [Unity]: Failed to delete cifs share if wrong access set\n\n- Update to version manila-7.4.2.dev29:\n * [devstack][ci] Move bgp setup to plugin\n\n- Update to version manila-7.4.2.dev27:\n * [devstack][ci] Modify firewall in ds-plugin\n\n- Update to version manila-7.4.2.dev25:\n * [devstack][ci] Set public network ID in tempest.conf\n * Make manila-tempest-plugin installation optional\n\n- Update to version manila-7.4.2.dev21:\n * fix bug in consume from share\n\n- Update to version manila-7.4.2.dev19:\n * Conditionally restore default route in setup\\_ipv6\n\n- Update to version manila-7.4.2.dev18:\n * [NetApp] Fix driver to honor standard extra specs\n * [NetApp] cDOT to set valid QoS during migration\n\n- Update to version manila-7.4.2.dev14:\n * Remove provisioned calculation on non thin provision backends\n\n- Update to version manila-7.4.2.dev12:\n * [NetApp] Fix share replica failing for 'transfer in progress' error\n * [NetApp] Fix share shrink error status\n * Delete type access list when deleting types\n * fix bug in quota checking\n * Prevent share type deletion if linked to group types\n\nChanges in openstack-monasca-agent.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- update to version 2.8.2~dev5\n - Fix libvirt ping_checks documentation\n\n- update to version 2.8.2~dev3\n - Add debug output for libvirt ping checks\n\n- Lockdown /bin/ip permissions for the monasca-agent (bsc#1107190)\n - add addtional arguments to /bin/ip in sudoers\n\n- Fix missing sudo privleges (bsc#1107190)\n - add /bin/ip and /usr/bin/ovs-vsctl to monasca-agent sudoers\n\n- update to version 2.8.2~dev2\n - Remove incorrect assignment of ping_cmd to 'True'\n - Do not copy /sbin/ip to /usr/bin/monasa-agent-ip\n\nChanges in openstack-neutron.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version neutron-13.0.8.dev68:\n * [DVR] Related routers should be included if are requested\n\n- Update to version neutron-13.0.8.dev67:\n * [EM releases] Move non-voting jobs to the experimental queue\n * [OVS] Make QoS OVS agent deletion operations more resilient\n * Add 'igmp\\_snooping\\_enable' config option for OVS agent\n\n- Update to version neutron-13.0.8.dev61:\n * Unnecessary routers should not be created\n * Ensure that stale flows are cleaned from phys\\_bridges\n * Do not block connection between br-int and br-phys on startup\n * Improve log message when port losts its vlan tag\n * [DVR] Reconfigure re-created physical bridges for dvr routers\n\n- Update to version neutron-13.0.8.dev52:\n * Fix rocky gates, multiple fixes\n\n- Update to version neutron-13.0.8.dev51:\n * Dynamically increase l3 router process queue green pool size\n\n- Update to version neutron-13.0.8.dev49:\n * Allow usage of legacy 3rd-party interface drivers\n\n- Update to version neutron-13.0.8.dev47:\n * Router synch shouldn't return unrelated routers\n\n- Update to version neutron-13.0.8.dev45:\n * Only notify nova of port status changes if configured\n\n- Update to version neutron-13.0.8.dev44:\n * Add Rocky milestone tag for alembic migration revisions\n\n- Update to version neutron-13.0.8.dev42:\n * Cap pycodestyle to be < 2.6.0\n * Report L3 extensions enabled in the L3 agent's config\n\n- Update to version neutron-13.0.8.dev39:\n * Adding LOG statements to debug 1838449\n\n- Update to version neutron-13.0.8.dev38:\n * Improve VLAN allocations synchronization\n * [L3 HA] Add 'no\\_track' option to VIPs in keepalived config\n * Change ovs-agent iteration log level to INFO\n * Refactor the L3 agent batch notifier\n * Do not link up HA router gateway in backup node\n\nChanges in openstack-neutron.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version neutron-13.0.8.dev68:\n * [DVR] Related routers should be included if are requested\n\n- Add 0001-Revert-Do-not-block-connection-between-br-int-and-br.patch (LP#1887148)\n\n- Update to version neutron-13.0.8.dev67:\n * [EM releases] Move non-voting jobs to the experimental queue\n * [OVS] Make QoS OVS agent deletion operations more resilient\n * Add 'igmp\\_snooping\\_enable' config option for OVS agent\n\n- Update to version neutron-13.0.8.dev61:\n * Unnecessary routers should not be created\n * Ensure that stale flows are cleaned from phys\\_bridges\n * Do not block connection between br-int and br-phys on startup\n * Improve log message when port losts its vlan tag\n * [DVR] Reconfigure re-created physical bridges for dvr routers\n\n- Update to version neutron-13.0.8.dev52:\n * Fix rocky gates, multiple fixes\n\n- Update to version neutron-13.0.8.dev51:\n * Dynamically increase l3 router process queue green pool size\n\n- Update to version neutron-13.0.8.dev49:\n * Allow usage of legacy 3rd-party interface drivers\n\n- Update to version neutron-13.0.8.dev47:\n * Router synch shouldn't return unrelated routers\n\n- Update to version neutron-13.0.8.dev45:\n * Only notify nova of port status changes if configured\n\n- Update to version neutron-13.0.8.dev44:\n * Add Rocky milestone tag for alembic migration revisions\n\n- Update to version neutron-13.0.8.dev42:\n * Cap pycodestyle to be < 2.6.0\n * Report L3 extensions enabled in the L3 agent's config\n\n- Update to version neutron-13.0.8.dev39:\n * Adding LOG statements to debug 1838449\n\n- Update to version neutron-13.0.8.dev38:\n * Improve VLAN allocations synchronization\n * [L3 HA] Add 'no\\_track' option to VIPs in keepalived config\n * Change ovs-agent iteration log level to INFO\n * Refactor the L3 agent batch notifier\n * Do not link up HA router gateway in backup node\n\nChanges in openstack-neutron-vsphere.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- The networking-vsphere repo got moved from github to opendev.org.\n We no longer able to automatically generate changelogs from\n opendev.org as it doesn't provide the same API as github.\n We'll need to manually update it from now on.\n- update to version 2.0.1~dev167\n - Making networking-vsphere run under Python3\n - OVSvApp Security Group Changes\n\nChanges in openstack-nova.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version nova-18.3.1.dev38:\n * libvirt: Don't delete disks on shared storage during evacuate\n * Add functional test for bug 1550919\n\n- Update to version nova-18.3.1.dev36:\n * Fix os\\_CODENAME detection and repo refresh during ceph tests\n\n- Update to version nova-18.3.1.dev35:\n * Update scheduler instance info at confirm resize\n\n- Update to version nova-18.3.1.dev33:\n * Reproduce bug 1869050\n\n- Update to version nova-18.3.1.dev31:\n * Revert 'nova shared storage: rbd is always shared storage'\n\n- Update to version nova-18.3.1.dev29:\n * Clean up allocation if unshelve fails due to neutron\n * Reset the cell cache for database access in Service\n * Reproduce bug 1862633\n * Make RBD imagebackend flatten method idempotent\n\n- Update to version nova-18.3.1.dev21:\n * Add config option for neutron client retries\n\n- Update to version nova-18.3.1.dev19:\n * Add retry to cinder API calls related to volume detach\n\n- Update to version nova-18.3.1.dev18:\n * Lowercase ironic driver hash ring and ignore case in cache\n\nChanges in openstack-nova.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version nova-18.3.1.dev38:\n * libvirt: Don't delete disks on shared storage during evacuate\n * Add functional test for bug 1550919\n\n- Update to version nova-18.3.1.dev36:\n * Fix os\\_CODENAME detection and repo refresh during ceph tests\n\n- Update to version nova-18.3.1.dev35:\n * Update scheduler instance info at confirm resize\n\n- Update to version nova-18.3.1.dev33:\n * Reproduce bug 1869050\n\n- Update to version nova-18.3.1.dev31:\n * Revert 'nova shared storage: rbd is always shared storage'\n\n- Update to version nova-18.3.1.dev29:\n * Clean up allocation if unshelve fails due to neutron\n * Reset the cell cache for database access in Service\n * Reproduce bug 1862633\n * Make RBD imagebackend flatten method idempotent\n\n- Update to version nova-18.3.1.dev21:\n * Add config option for neutron client retries\n\n- Update to version nova-18.3.1.dev19:\n * Add retry to cinder API calls related to volume detach\n\n- Update to version nova-18.3.1.dev18:\n * Lowercase ironic driver hash ring and ignore case in cache\n\nChanges in openstack-octavia.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update patch for SUSE distro support\n * Fix osutils.py to handle secondary interfaces (SOC-11289)\n * Add 020-amphora-logging.conf for configuring log targets\n\n- Update to version octavia-3.2.3.dev7:\n * Fix the amphora noop driver\n * Validate resource access when creating loadbalancer or member\n\n- Update to version octavia-3.2.3.dev3:\n * Fix Rocky v2 scenario and grenade jobs\n\nChanges in openstack-octavia-amphora-image.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update image to 0.1.4 to include latest changes\n\nChanges in openstack-resource-agents.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 1.0+git.1569436425.8b9c49f:\n * Add a configurable delay to Nova Evacuate calls\n * OpenDev Migration Patch\n * NovaEvacuate: fix a syntax error\n * NovaEvacuate: Support the new split-out IHA fence agents with backwards compatibility\n * NovaEvacuate: Correctly handle stopped hypervisors\n * neutron-ha-tool: do not replicate dhcp\n * NovaCompute: Support parsing host option from /etc/nova/nova.conf.d\n * NovaCompute: Use variable to avoid calling crudini a second time\n * NovaEvacuate: Allow debug logging to be turned on easily\n\nChanges in python-Django1.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 1.11.29 (bsc#1161919, CVE-2020-7471, bsc#1165022, CVE-2020-9402, bsc#1159447, CVE-2019-19844)\n * Fixed CVE-2020-9402 -- Properly escaped tolerance parameter in GIS functions and aggregates on Oracle.\n * Pinned PyYAML < 5.3 in test requirements.\n * Fixed CVE-2020-7471 -- Properly escaped StringAgg(delimiter) parameter.\n * Fixed timezones tests for PyYAML 5.3+.\n * Fixed CVE-2019-19844 -- Used verified user email for password reset requests.\n * Fixed #31073 -- Prevented CheckboxInput.get_context() from mutating attrs.\n * Fixed #30826 -- Fixed crash of many JSONField lookups when one hand side is key transform.\n * Fixed #30769 -- Fixed a crash when filtering against a subquery JSON/HStoreField annotation.\n\n- Security fixes (bsc#1172167, bsc#1172166, CVE-2020-13254, CVE-2020-13596)\n * Added patch CVE-2020-13254.patch\n * Added patch CVE-2020-13596.patch\n\nChanges in python-Pillow.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Add 010-Fix-OOB-reads-in-FLI-decoding.patch\n * From upstream, backported\n * Fixes CVE-2020-10177, bsc#1173413\n- Add 011-Fix-buffer-overflow-in-SGI-RLE-decoding.patch\n * From upstream, backported\n * Fixes CVE-2020-11538, bsc#1173420\n- Add 012-Fix-bounds-overflow-in-JPEG-2000-decoding.patch\n * From upstream, backported\n * Fixes CVE-2020-10994, bsc#1173418\n- Add 013-Fix-bounds-overflow-in-PCX-decoding.patch\n * From upstream, backported\n * Fixes CVE-2020-10378, bsc#1173416\n\n- Remove decompression_bomb.gif and relevant test case to avoid\n ClamAV scan alerts during build\n\n- Add 001-Corrected-negative-seeks.patch\n * From upstream, backported\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 002-Added-decompression-bomb-checks.patch\n * From upstream, backported\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 003-Raise-error-if-dimension-is-a-string.patch\n * From upstream, backported\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 004-Catch-buffer-overruns.patch\n * From upstream, backported\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 005-Catch-PCX-P-mode-buffer-overrun.patch\n * From upstream, backported\n * Fixes CVE-2020-5312, bsc#1160152\n- Add 006-Catch-SGI-buffer-overruns.patch\n * From upstream, backported\n * Fixes CVE-2020-5311, bsc#1160151\n- Add 007-Ensure-previous-FLI-frame-is-loaded.patch\n * From upstream, backported\n * Fixes https://github.com/python-pillow/Pillow/issues/2649\n * Uncovers CVE-2020-5313, bsc#1160153\n- Add 008-Catch-FLI-buffer-overrun.patch\n * From upstream, backported\n * Fixes CVE-2020-5313, bsc#1160153\n- Add 009-Invalid-number-of-bands-in-FPX-image.patch\n * From upstream, backported\n * Fixes CVE-2019-19911, bsc#1160192\n\nChanges in python-ardana-packager.SUSE_SLE-12-SP4_Update_Products_Cloud9:\n- fetch updated nova_host_aggregate from git\n - Add missing novaclient required domain entries (bsc#1174006)\n\n- update from git repo\n - Add missing novaclient required domain entries (bsc#1174006)\n\nChanges in python-heatclient.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- update to version 1.16.3\n - Replace openstack.org git:// URLs with https://\n - OpenDev Migration Patch\n\nChanges in python-neutron-tempest-plugin.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- added 0002-Ensure-that-external-network-dont-have-any-ports-before-deletion.patch\n\nChanges in python-octavia-tempest-plugin.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Fix broken compile options for httpd.bin\n\nChanges in python-os-brick.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Apply patches to resolve CVE-2020-10755 (bsc#1172522)\n - 0001-Remove-VxFlex-OS-credentials-from-connection_propert.patch\n - 0002-Fix-Remove-VxFlex-OS-credentials-regression.patch\n\nChanges in python-oslo.messaging.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- added 0001-Use-default-exchange-for-direct-messaging.patch\n (SOC-11082, SOC-11274, bsc#1159046)\n\nChanges in python-pyroute2.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- update to 0.5.2\n * ndb: read-only DB prototype\n * remote: support communication via stdio\n * general: fix async keyword -- Python 3.7 compatibility\n * <https://github.com/svinota/pyroute2/issues/467>\n * <https://bugzilla.redhat.com/show_bug.cgi?id=1583800>\n * iproute: support monitoring on BSD systems via PF_ROUTE\n * rtnl: support for SQL schema in message classes\n * nl80211: improvements\n * <https://github.com/svinota/pyroute2/issues/512>\n * <https://github.com/svinota/pyroute2/issues/514>\n * <https://github.com/svinota/pyroute2/issues/515>\n * netlink: support generators\n- update to 0.5.1\n * ipdb: #310 -- route keying fix\n * ipdb: #483, #484 -- callback internals change\n * ipdb: #499 -- eventloop interface\n * ipdb: #500 -- fix non-default :: routes\n * netns: #448 -- API change: setns() doesn't remove FD\n * netns: #504 -- fix resource leakage\n * bsd: initial commits\n\n- update to 0.5.0\n * ACHTUNG: ipdb commit logic is changed\n * ipdb: do not drop failed transactions\n * ipdb: #388 -- normalize IPv6 addresses\n * ipdb: #391 -- support both IPv4 and IPv6 default routes\n * ipdb: #392 -- fix MPLS route key reference\n * ipdb: #394 -- correctly work with route priorities\n * ipdb: #408 -- fix IPv6 routes in tables >= 256\n * ipdb: #416 -- fix VRF interfaces creation\n * ipset: multiple improvements\n * tuntap: #469 -- support s390x arch\n * nlsocket: #443 -- fix socket methods resolve order for Python2\n * netns: non-destructive `netns.create()`\n\nChanges in python-urllib3.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Skip test_source_address_error as we raise different error with\n fixes that we provide in new python2/3\n- Update python-urllib3-recent-date.patch to have RECENT_DATE within\n the needed boundaries for the test suite.\n\nChanges in python-waitress.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- update to 1.4.3 to include fixes for:\n * CVE-2019-16785 / bsc#1161088\n * CVE-2019-16786 / bsc#1161089\n * CVE-2019-16789 / bsc#1160790\n * CVE-2019-16792 / bsc#1161670\n\n- make sure UTF8 locale is used when runnning tests\n * Sometimes functional tests executed in python3 failed if stdout was not\n set to UTF-8. The error message was:\n ValueError: underlying buffer has been detached\n\n- %python3_only -> %python_alternative\n\n- update to 1.4.3\n * Waitress did not properly validate that the HTTP headers it received\n were properly formed, thereby potentially allowing a front-end server\n to treat a request different from Waitress. This could lead to HTTP\n request smuggling/splitting.\n- drop patch local-intersphinx-inventories.patch\n * it was commented out, anyway\n\n- update to 1.4.0:\n - Waitress used to slam the door shut on HTTP pipelined requests without\n setting the ``Connection: close`` header as appropriate in the response. This\n is of course not very friendly. Waitress now explicitly sets the header when\n responding with an internally generated error such as 400 Bad Request or 500\n Internal Server Error to notify the remote client that it will be closing the\n connection after the response is sent.\n - Waitress no longer allows any spaces to exist between the header field-name\n and the colon. While waitress did not strip the space and thereby was not\n vulnerable to any potential header field-name confusion, it should have sent\n back a 400 Bad Request. See https://github.com/Pylons/waitress/issues/273\n - CRLR handling Security fixes\n\n- update to 1.3.1\n * Waitress won’t accidentally throw away part of the path if it\n starts with a double slash\n\n- version update to 1.3.0\n Deprecations\n ~~~~~~~~~~~~\n - The ``send_bytes`` adjustment now defaults to ``1`` and is deprecated\n pending removal in a future release.\n and https://github.com/Pylons/waitress/pull/246\n Features\n ~~~~~~~~\n - Add a new ``outbuf_high_watermark`` adjustment which is used to apply\n backpressure on the ``app_iter`` to avoid letting it spin faster than data\n can be written to the socket. This stabilizes responses that iterate quickly\n with a lot of data.\n See https://github.com/Pylons/waitress/pull/242\n - Stop early and close the ``app_iter`` when attempting to write to a closed\n socket due to a client disconnect. This should notify a long-lived streaming\n response when a client hangs up.\n See https://github.com/Pylons/waitress/pull/238\n and https://github.com/Pylons/waitress/pull/240\n and https://github.com/Pylons/waitress/pull/241\n - Adjust the flush to output ``SO_SNDBUF`` bytes instead of whatever was\n set in the ``send_bytes`` adjustment. ``send_bytes`` now only controls how\n much waitress will buffer internally before flushing to the kernel, whereas\n previously it used to also throttle how much data was sent to the kernel.\n This change enables a streaming ``app_iter`` containing small chunks to\n still be flushed efficiently.\n See https://github.com/Pylons/waitress/pull/246\n Bugfixes\n ~~~~~~~~\n - Upon receiving a request that does not include HTTP/1.0 or HTTP/1.1 we will\n no longer set the version to the string value 'None'. See\n https://github.com/Pylons/waitress/pull/252 and\n https://github.com/Pylons/waitress/issues/110\n - When a client closes a socket unexpectedly there was potential for memory\n leaks in which data was written to the buffers after they were closed,\n causing them to reopen.\n See https://github.com/Pylons/waitress/pull/239\n - Fix the queue depth warnings to only show when all threads are busy.\n See https://github.com/Pylons/waitress/pull/243\n and https://github.com/Pylons/waitress/pull/247\n - Trigger the ``app_iter`` to close as part of shutdown. This will only be\n noticeable for users of the internal server api. In more typical operations\n the server will die before benefiting from these changes.\n See https://github.com/Pylons/waitress/pull/245\n - Fix a bug in which a streaming ``app_iter`` may never cleanup data that has\n already been sent. This would cause buffers in waitress to grow without\n bounds. These buffers now properly rotate and release their data.\n See https://github.com/Pylons/waitress/pull/242\n - Fix a bug in which non-seekable subclasses of ``io.IOBase`` would trigger\n an exception when passed to the ``wsgi.file_wrapper`` callback.\n See https://github.com/Pylons/waitress/pull/249\n\n- Trim marketing wording and other platform mentions.\n\n- Add fetch-intersphinx-inventories.sh to sources\n- Add local-intersphinx-inventories.patch for generating the docs\n correctly\n\n- update to version 1.2.1:\n too many changes to list here, see:\n https://github.com/Pylons/waitress/blob/master/CHANGES.txt\n or even:\n https://github.com/Pylons/waitress/commits/master\n\n- Remove superfluous devel dependency for noarch package\n\nChanges in rubygem-activeresource.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Add bsc#1171560-CVE-2020-8151-encode-id-param.patch\n Prevent possible information disclosure issue that could allow\n an attacker to create specially crafted requests to access data\n in an unexpected way (bsc#1171560 CVE-2020-8151))_\n\nChanges in rubygem-json-1_7.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Add CVE-2020-10663.patch (CVE-2020-10663, bsc#1167244)\n\nChanges in rubygem-puma.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Fix indentation in gem2rpm.yml_\n\n- Add CVE-2020-11077.patch (bsc#1172175, CVE-2020-11077)\n- Add chunked-request-handling.patch (needed for CVE-2020-11076.patch)\n- Add CVE-2020-11076.patch (bsc#1172176, CVE-2020-11076)\n- Add all patches to gem2rpm.yml\n\nChanges in release-notes-suse-openstack-cloud.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- Update to version 9.20200610:\n * Terraform support validation release note added (SOC-11314)\n\n- Update to version 9.20200504:\n * language change for accuracy - MANAGEMENT network group (SOC-10106)\n * add limitation about MANAGEMENT network group (SOC-10106)\n\n- Update to version 9.20200429:\n * Mark identity api v2 as deprecated (bsc#1163446)\n\n- Update to version 9.20200428:\n * Update release notes to indicate Octavia support has shipped (SOC-11241)\n ", title: "Description of the patch", }, { category: "details", text: "SUSE-2020-2161,SUSE-OpenStack-Cloud-9-2020-2161,SUSE-OpenStack-Cloud-Crowbar-9-2020-2161", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-ru-2020_2161-1.json", }, { category: "self", summary: "URL for SUSE-RU-2020:2161-1", url: "https://www.suse.com/support/update/announcement//suse-ru-20202161-1/", }, { category: "self", summary: "E-Mail link for SUSE-RU-2020:2161-1", url: "https://lists.suse.com/pipermail/sle-updates/2020-August/015668.html", }, { category: "self", summary: "SUSE Bug 1019111", url: "https://bugzilla.suse.com/1019111", }, { category: "self", summary: "SUSE Bug 1107190", url: "https://bugzilla.suse.com/1107190", }, { category: "self", summary: "SUSE Bug 1126503", url: "https://bugzilla.suse.com/1126503", }, { category: "self", summary: "SUSE Bug 1136928", url: "https://bugzilla.suse.com/1136928", }, { category: "self", summary: "SUSE Bug 1153191", url: "https://bugzilla.suse.com/1153191", }, { category: "self", summary: "SUSE Bug 1159046", url: "https://bugzilla.suse.com/1159046", }, { category: "self", summary: "SUSE Bug 1159447", url: "https://bugzilla.suse.com/1159447", }, { category: "self", summary: "SUSE Bug 1160151", url: "https://bugzilla.suse.com/1160151", }, { category: "self", summary: "SUSE Bug 1160152", url: "https://bugzilla.suse.com/1160152", }, { category: "self", summary: "SUSE Bug 1160153", url: "https://bugzilla.suse.com/1160153", }, { category: "self", summary: "SUSE Bug 1160192", url: "https://bugzilla.suse.com/1160192", }, { category: "self", summary: "SUSE Bug 1160790", url: "https://bugzilla.suse.com/1160790", }, { category: "self", summary: "SUSE Bug 1161088", url: "https://bugzilla.suse.com/1161088", }, { category: "self", summary: "SUSE Bug 1161089", url: "https://bugzilla.suse.com/1161089", }, { category: "self", summary: "SUSE Bug 1161670", url: "https://bugzilla.suse.com/1161670", }, { category: "self", summary: "SUSE Bug 1161919", url: "https://bugzilla.suse.com/1161919", }, { category: "self", summary: "SUSE Bug 1163446", url: "https://bugzilla.suse.com/1163446", }, { category: "self", summary: "SUSE Bug 1165022", url: "https://bugzilla.suse.com/1165022", }, { category: "self", summary: "SUSE Bug 1170657", url: "https://bugzilla.suse.com/1170657", }, { category: "self", summary: "SUSE Bug 1171070", url: "https://bugzilla.suse.com/1171070", }, { category: "self", summary: "SUSE Bug 1171071", url: "https://bugzilla.suse.com/1171071", }, { category: "self", summary: "SUSE Bug 1171072", url: "https://bugzilla.suse.com/1171072", }, { category: "self", summary: "SUSE Bug 1171273", url: "https://bugzilla.suse.com/1171273", }, { category: "self", summary: "SUSE Bug 1171594", url: "https://bugzilla.suse.com/1171594", }, { category: "self", summary: "SUSE Bug 1171909", url: "https://bugzilla.suse.com/1171909", }, { category: "self", summary: "SUSE Bug 1172166", url: "https://bugzilla.suse.com/1172166", }, { category: "self", summary: "SUSE Bug 1172167", url: "https://bugzilla.suse.com/1172167", }, { category: "self", summary: "SUSE Bug 1172409", url: "https://bugzilla.suse.com/1172409", }, { category: "self", summary: "SUSE Bug 1172522", url: "https://bugzilla.suse.com/1172522", }, { category: "self", summary: "SUSE Bug 1173413", url: "https://bugzilla.suse.com/1173413", }, { category: "self", summary: "SUSE Bug 1173416", url: "https://bugzilla.suse.com/1173416", }, { category: "self", summary: "SUSE Bug 1173418", url: "https://bugzilla.suse.com/1173418", }, { category: "self", summary: "SUSE Bug 1173420", url: "https://bugzilla.suse.com/1173420", }, { category: "self", summary: "SUSE Bug 1174006", url: "https://bugzilla.suse.com/1174006", }, { category: "self", summary: "SUSE CVE CVE-2019-16785 page", url: "https://www.suse.com/security/cve/CVE-2019-16785/", }, { category: "self", summary: "SUSE CVE CVE-2019-16786 page", url: "https://www.suse.com/security/cve/CVE-2019-16786/", }, { category: "self", summary: "SUSE CVE CVE-2019-16789 page", url: "https://www.suse.com/security/cve/CVE-2019-16789/", }, { category: "self", summary: "SUSE CVE CVE-2019-16792 page", url: "https://www.suse.com/security/cve/CVE-2019-16792/", }, { category: "self", summary: "SUSE CVE CVE-2019-16865 page", url: "https://www.suse.com/security/cve/CVE-2019-16865/", }, { category: "self", summary: "SUSE CVE CVE-2019-19844 page", url: "https://www.suse.com/security/cve/CVE-2019-19844/", }, { category: "self", summary: "SUSE CVE CVE-2019-19911 page", url: "https://www.suse.com/security/cve/CVE-2019-19911/", }, { category: "self", summary: "SUSE CVE CVE-2019-3828 page", url: "https://www.suse.com/security/cve/CVE-2019-3828/", }, { category: "self", summary: "SUSE CVE CVE-2020-10177 page", url: "https://www.suse.com/security/cve/CVE-2020-10177/", }, { category: "self", summary: "SUSE CVE CVE-2020-10378 page", url: "https://www.suse.com/security/cve/CVE-2020-10378/", }, { category: "self", summary: "SUSE CVE CVE-2020-10743 page", url: "https://www.suse.com/security/cve/CVE-2020-10743/", }, { category: "self", summary: "SUSE CVE CVE-2020-10755 page", url: "https://www.suse.com/security/cve/CVE-2020-10755/", }, { category: "self", summary: "SUSE CVE CVE-2020-10994 page", url: "https://www.suse.com/security/cve/CVE-2020-10994/", }, { category: "self", summary: "SUSE CVE CVE-2020-11538 page", url: "https://www.suse.com/security/cve/CVE-2020-11538/", }, { category: "self", summary: "SUSE CVE CVE-2020-12052 page", url: "https://www.suse.com/security/cve/CVE-2020-12052/", }, { category: "self", summary: "SUSE CVE CVE-2020-13254 page", url: "https://www.suse.com/security/cve/CVE-2020-13254/", }, { category: "self", summary: "SUSE CVE CVE-2020-13379 page", url: "https://www.suse.com/security/cve/CVE-2020-13379/", }, { category: "self", summary: "SUSE CVE CVE-2020-13596 page", url: "https://www.suse.com/security/cve/CVE-2020-13596/", }, { category: "self", summary: "SUSE CVE CVE-2020-5311 page", url: "https://www.suse.com/security/cve/CVE-2020-5311/", }, { category: "self", summary: "SUSE CVE CVE-2020-5312 page", url: "https://www.suse.com/security/cve/CVE-2020-5312/", }, { category: "self", summary: "SUSE CVE CVE-2020-5313 page", url: "https://www.suse.com/security/cve/CVE-2020-5313/", }, { category: "self", summary: "SUSE CVE CVE-2020-7471 page", url: "https://www.suse.com/security/cve/CVE-2020-7471/", }, { category: "self", summary: "SUSE CVE CVE-2020-8184 page", url: "https://www.suse.com/security/cve/CVE-2020-8184/", }, { category: "self", summary: "SUSE CVE CVE-2020-9402 page", url: "https://www.suse.com/security/cve/CVE-2020-9402/", }, ], title: "Security update for ansible1, ardana-ansible, ardana-cobbler, ardana-glance, ardana-input-model, ardana-logging, ardana-manila, ardana-monasca, ardana-mq, ardana-neutron, ardana-octavia, ardana-tempest, crowbar-core, crowbar-openstack, grafana, kibana, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-designate, openstack-heat-templates, openstack-ironic, openstack-keystone, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-neutron, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, python-Django1, python-Pillow, python-ardana-packager, python-heatclient, python-neutron-tempest-plugin, python-octavia-tempest-plugin, python-os-brick, python-oslo.messaging, python-pyroute2, python-urllib3, python-waitress, release-notes-suse-openstack-cloud, rubygem-activeresource, rubygem-json-1_7, rubygem-puma", tracking: { current_release_date: "2020-08-06T22:09:12Z", generator: { date: "2020-08-06T22:09:12Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-RU-2020:2161-1", initial_release_date: "2020-08-06T22:09:12Z", revision_history: [ { date: "2020-08-06T22:09:12Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", product: { name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", product_id: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", product: { name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", product_id: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", }, }, { category: "product_version", name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", product: { name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", product_id: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.aarch64", }, }, { category: "product_version", name: "grafana-6.2.5-3.12.2.aarch64", product: { name: "grafana-6.2.5-3.12.2.aarch64", product_id: "grafana-6.2.5-3.12.2.aarch64", }, }, { category: "product_version", name: "kibana-4.6.3-4.3.2.aarch64", product: { name: "kibana-4.6.3-4.3.2.aarch64", product_id: "kibana-4.6.3-4.3.2.aarch64", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.3.2.aarch64", product: { name: "python-Pillow-5.2.0-3.3.2.aarch64", product_id: "python-Pillow-5.2.0-3.3.2.aarch64", }, }, { category: "product_version", name: "python-octavia-tempest-plugin-0.2.0-3.3.2.aarch64", product: { name: "python-octavia-tempest-plugin-0.2.0-3.3.2.aarch64", product_id: "python-octavia-tempest-plugin-0.2.0-3.3.2.aarch64", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.3.2.aarch64", product: { name: "python3-Pillow-5.2.0-3.3.2.aarch64", product_id: "python3-Pillow-5.2.0-3.3.2.aarch64", }, }, { category: "product_version", name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.aarch64", product: { name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.aarch64", product_id: "python3-octavia-tempest-plugin-0.2.0-3.3.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.aarch64", product: { name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.aarch64", product_id: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.aarch64", product: { name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.aarch64", product_id: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.aarch64", product: { name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.aarch64", product_id: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.aarch64", product: { name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.aarch64", product_id: "ruby2.1-rubygem-puma-2.16.0-4.9.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.aarch64", product: { name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.aarch64", product_id: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "ansible1-1.9.6-9.7.2.noarch", product: { name: "ansible1-1.9.6-9.7.2.noarch", product_id: "ansible1-1.9.6-9.7.2.noarch", }, }, { category: "product_version", name: "ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", product: { name: "ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", product_id: "ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", }, }, { category: "product_version", name: "ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", product: { name: "ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", product_id: "ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", }, }, { category: "product_version", name: "ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", product: { name: "ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", product_id: "ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", }, }, { category: "product_version", name: "ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", product: { name: "ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", product_id: "ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", }, }, { category: "product_version", name: "ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", product: { name: "ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", product_id: "ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", }, }, { category: "product_version", name: "ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", product: { name: "ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", product_id: "ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", }, }, { category: "product_version", name: "ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", product: { name: "ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", product_id: "ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", }, }, { category: "product_version", name: "ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", product: { name: "ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", product_id: "ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", }, }, { category: "product_version", name: "ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", product: { name: "ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", product_id: "ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", }, }, { category: "product_version", name: "ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", product: { name: "ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", product_id: "ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", }, }, { category: "product_version", name: "ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", product: { name: "ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", product_id: "ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", }, }, { category: "product_version", name: "crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", product: { name: "crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", product_id: "crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-barbican-7.0.1~dev24-3.9.5.noarch", product: { name: "openstack-barbican-7.0.1~dev24-3.9.5.noarch", product_id: "openstack-barbican-7.0.1~dev24-3.9.5.noarch", }, }, { category: "product_version", name: "openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", product: { name: "openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", product_id: "openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", }, }, { category: "product_version", name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", product: { name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", product_id: "openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", }, }, { category: "product_version", name: "openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", product: { name: "openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", product_id: "openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", }, }, { category: "product_version", name: "openstack-barbican-test-7.0.1~dev24-3.9.5.noarch", product: { name: "openstack-barbican-test-7.0.1~dev24-3.9.5.noarch", product_id: "openstack-barbican-test-7.0.1~dev24-3.9.5.noarch", }, }, { category: "product_version", name: "openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", product: { name: "openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", product_id: "openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", }, }, { category: "product_version", name: "openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", product: { name: "openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", product_id: "openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", product: { name: "openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", product_id: "openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", product: { name: "openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", product_id: "openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", product: { name: "openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", product_id: "openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", product: { name: "openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", product_id: "openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", product: { name: "openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", product_id: "openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "openstack-ceilometer-test-11.1.1~dev7-3.16.3.noarch", product: { name: "openstack-ceilometer-test-11.1.1~dev7-3.16.3.noarch", product_id: "openstack-ceilometer-test-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "openstack-cinder-13.0.10~dev12-3.22.4.noarch", product: { name: "openstack-cinder-13.0.10~dev12-3.22.4.noarch", product_id: "openstack-cinder-13.0.10~dev12-3.22.4.noarch", }, }, { category: "product_version", name: "openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", product: { name: "openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", product_id: "openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", }, }, { category: "product_version", name: "openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", product: { name: "openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", product_id: "openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", }, }, { category: "product_version", name: "openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", product: { name: "openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", product_id: "openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", }, }, { category: "product_version", name: "openstack-cinder-test-13.0.10~dev12-3.22.4.noarch", product: { name: "openstack-cinder-test-13.0.10~dev12-3.22.4.noarch", product_id: "openstack-cinder-test-13.0.10~dev12-3.22.4.noarch", }, }, { category: "product_version", name: "openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", product: { name: "openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", product_id: "openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", }, }, { category: "product_version", name: "openstack-dashboard-14.1.1~dev6-3.15.5.noarch", product: { name: "openstack-dashboard-14.1.1~dev6-3.15.5.noarch", product_id: "openstack-dashboard-14.1.1~dev6-3.15.5.noarch", }, }, { category: "product_version", name: "openstack-dashboard-test-14.1.1~dev6-3.15.5.noarch", product: { name: "openstack-dashboard-test-14.1.1~dev6-3.15.5.noarch", product_id: "openstack-dashboard-test-14.1.1~dev6-3.15.5.noarch", }, }, { category: "product_version", name: "openstack-designate-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-designate-api-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-api-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-api-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-designate-central-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-central-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-central-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-designate-test-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-test-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-test-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", product: { name: "openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", product_id: "openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", product: { name: "openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", product_id: "openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-11.1.5~dev6-3.19.3.noarch", product: { name: "openstack-ironic-11.1.5~dev6-3.19.3.noarch", product_id: "openstack-ironic-11.1.5~dev6-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", product: { name: "openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", product_id: "openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", product: { name: "openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", product_id: "openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-ironic-test-11.1.5~dev6-3.19.3.noarch", product: { name: "openstack-ironic-test-11.1.5~dev6-3.19.3.noarch", product_id: "openstack-ironic-test-11.1.5~dev6-3.19.3.noarch", }, }, { category: "product_version", name: "openstack-keystone-14.2.1~dev4-3.22.3.noarch", product: { name: "openstack-keystone-14.2.1~dev4-3.22.3.noarch", product_id: "openstack-keystone-14.2.1~dev4-3.22.3.noarch", }, }, { category: "product_version", name: "openstack-keystone-test-14.2.1~dev4-3.22.3.noarch", product: { name: "openstack-keystone-test-14.2.1~dev4-3.22.3.noarch", product_id: "openstack-keystone-test-14.2.1~dev4-3.22.3.noarch", }, }, { category: "product_version", name: "openstack-magnum-7.2.1~dev1-3.13.3.noarch", product: { name: "openstack-magnum-7.2.1~dev1-3.13.3.noarch", product_id: "openstack-magnum-7.2.1~dev1-3.13.3.noarch", }, }, { category: "product_version", name: "openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", product: { name: "openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", product_id: "openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", }, }, { category: "product_version", name: "openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", product: { name: "openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", product_id: "openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", }, }, { category: "product_version", name: "openstack-magnum-test-7.2.1~dev1-3.13.3.noarch", product: { name: "openstack-magnum-test-7.2.1~dev1-3.13.3.noarch", product_id: "openstack-magnum-test-7.2.1~dev1-3.13.3.noarch", }, }, { category: "product_version", name: "openstack-manila-7.4.2~dev31-4.24.3.noarch", product: { name: "openstack-manila-7.4.2~dev31-4.24.3.noarch", product_id: "openstack-manila-7.4.2~dev31-4.24.3.noarch", }, }, { category: "product_version", name: "openstack-manila-api-7.4.2~dev31-4.24.3.noarch", product: { name: "openstack-manila-api-7.4.2~dev31-4.24.3.noarch", product_id: "openstack-manila-api-7.4.2~dev31-4.24.3.noarch", }, }, { category: "product_version", name: "openstack-manila-data-7.4.2~dev31-4.24.3.noarch", product: { name: "openstack-manila-data-7.4.2~dev31-4.24.3.noarch", product_id: "openstack-manila-data-7.4.2~dev31-4.24.3.noarch", }, }, { category: "product_version", name: "openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", product: { name: "openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", product_id: "openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", }, }, { category: "product_version", name: "openstack-manila-share-7.4.2~dev31-4.24.3.noarch", product: { name: "openstack-manila-share-7.4.2~dev31-4.24.3.noarch", product_id: "openstack-manila-share-7.4.2~dev31-4.24.3.noarch", }, }, { category: "product_version", name: "openstack-manila-test-7.4.2~dev31-4.24.3.noarch", product: { name: "openstack-manila-test-7.4.2~dev31-4.24.3.noarch", product_id: "openstack-manila-test-7.4.2~dev31-4.24.3.noarch", }, }, { category: "product_version", name: "openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", product: { name: "openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", product_id: "openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-test-13.0.8~dev68-3.25.3.noarch", product: { name: "openstack-neutron-test-13.0.8~dev68-3.25.3.noarch", product_id: "openstack-neutron-test-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", product: { name: "openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", product_id: "openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", product: { name: "openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", product_id: "openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", product: { name: "openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", product_id: "openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", product: { name: "openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", product_id: "openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-vsphere-test-2.0.1~dev167-3.3.3.noarch", product: { name: "openstack-neutron-vsphere-test-2.0.1~dev167-3.3.3.noarch", product_id: "openstack-neutron-vsphere-test-2.0.1~dev167-3.3.3.noarch", }, }, { category: "product_version", name: "openstack-nova-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-api-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-api-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-api-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-console-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-console-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-console-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-consoleauth-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-consoleauth-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-consoleauth-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-network-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-network-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-network-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-test-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-test-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-test-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", product: { name: "openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", product_id: "openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "openstack-octavia-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", product: { name: "openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", product_id: "openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-network-namespace-scripts-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-network-namespace-scripts-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-network-namespace-scripts-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-test-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-test-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-test-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", product: { name: "openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", product_id: "openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", product: { name: "openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", product_id: "openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", }, }, { category: "product_version", name: "python-Django1-1.11.29-3.15.2.noarch", product: { name: "python-Django1-1.11.29-3.15.2.noarch", product_id: "python-Django1-1.11.29-3.15.2.noarch", }, }, { category: "product_version", name: "python-ardana-packager-0.0.3-9.3.2.noarch", product: { name: "python-ardana-packager-0.0.3-9.3.2.noarch", product_id: "python-ardana-packager-0.0.3-9.3.2.noarch", }, }, { category: "product_version", name: "python-barbican-7.0.1~dev24-3.9.5.noarch", product: { name: "python-barbican-7.0.1~dev24-3.9.5.noarch", product_id: "python-barbican-7.0.1~dev24-3.9.5.noarch", }, }, { category: "product_version", name: "python-ceilometer-11.1.1~dev7-3.16.3.noarch", product: { name: "python-ceilometer-11.1.1~dev7-3.16.3.noarch", product_id: "python-ceilometer-11.1.1~dev7-3.16.3.noarch", }, }, { category: "product_version", name: "python-cinder-13.0.10~dev12-3.22.4.noarch", product: { name: "python-cinder-13.0.10~dev12-3.22.4.noarch", product_id: "python-cinder-13.0.10~dev12-3.22.4.noarch", }, }, { category: "product_version", name: "python-designate-7.0.2~dev2-3.19.3.noarch", product: { name: "python-designate-7.0.2~dev2-3.19.3.noarch", product_id: "python-designate-7.0.2~dev2-3.19.3.noarch", }, }, { category: "product_version", name: "python-heatclient-1.16.3-3.3.3.noarch", product: { name: "python-heatclient-1.16.3-3.3.3.noarch", product_id: "python-heatclient-1.16.3-3.3.3.noarch", }, }, { category: "product_version", name: "python-heatclient-doc-1.16.3-3.3.3.noarch", product: { name: "python-heatclient-doc-1.16.3-3.3.3.noarch", product_id: "python-heatclient-doc-1.16.3-3.3.3.noarch", }, }, { category: "product_version", name: "python-horizon-14.1.1~dev6-3.15.5.noarch", product: { name: "python-horizon-14.1.1~dev6-3.15.5.noarch", product_id: "python-horizon-14.1.1~dev6-3.15.5.noarch", }, }, { category: "product_version", name: "python-ironic-11.1.5~dev6-3.19.3.noarch", product: { name: "python-ironic-11.1.5~dev6-3.19.3.noarch", product_id: "python-ironic-11.1.5~dev6-3.19.3.noarch", }, }, { category: "product_version", name: "python-keystone-14.2.1~dev4-3.22.3.noarch", product: { name: "python-keystone-14.2.1~dev4-3.22.3.noarch", product_id: "python-keystone-14.2.1~dev4-3.22.3.noarch", }, }, { category: "product_version", name: "python-magnum-7.2.1~dev1-3.13.3.noarch", product: { name: "python-magnum-7.2.1~dev1-3.13.3.noarch", product_id: "python-magnum-7.2.1~dev1-3.13.3.noarch", }, }, { category: "product_version", name: "python-manila-7.4.2~dev31-4.24.3.noarch", product: { name: "python-manila-7.4.2~dev31-4.24.3.noarch", product_id: "python-manila-7.4.2~dev31-4.24.3.noarch", }, }, { category: "product_version", name: "python-monasca-agent-2.8.2~dev5-3.9.3.noarch", product: { name: "python-monasca-agent-2.8.2~dev5-3.9.3.noarch", product_id: "python-monasca-agent-2.8.2~dev5-3.9.3.noarch", }, }, { category: "product_version", name: "python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", product: { name: "python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", product_id: "python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", }, }, { category: "product_version", name: "python-neutron-13.0.8~dev68-3.25.3.noarch", product: { name: "python-neutron-13.0.8~dev68-3.25.3.noarch", product_id: "python-neutron-13.0.8~dev68-3.25.3.noarch", }, }, { category: "product_version", name: "python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", product: { name: "python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", product_id: "python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", }, }, { category: "product_version", name: "python-nova-18.3.1~dev38-3.25.4.noarch", product: { name: "python-nova-18.3.1~dev38-3.25.4.noarch", product_id: "python-nova-18.3.1~dev38-3.25.4.noarch", }, }, { category: "product_version", name: "python-octavia-3.2.3~dev7-3.25.3.noarch", product: { name: "python-octavia-3.2.3~dev7-3.25.3.noarch", product_id: "python-octavia-3.2.3~dev7-3.25.3.noarch", }, }, { category: "product_version", name: "python-openstack_auth-14.1.1~dev6-3.15.5.noarch", product: { name: "python-openstack_auth-14.1.1~dev6-3.15.5.noarch", product_id: "python-openstack_auth-14.1.1~dev6-3.15.5.noarch", }, }, { category: "product_version", name: "python-os-brick-2.5.10-3.12.3.noarch", product: { name: "python-os-brick-2.5.10-3.12.3.noarch", product_id: "python-os-brick-2.5.10-3.12.3.noarch", }, }, { category: "product_version", name: "python-os-brick-common-2.5.10-3.12.3.noarch", product: { name: "python-os-brick-common-2.5.10-3.12.3.noarch", product_id: "python-os-brick-common-2.5.10-3.12.3.noarch", }, }, { category: "product_version", name: "python-os-brick-doc-2.5.10-3.12.3.noarch", product: { name: "python-os-brick-doc-2.5.10-3.12.3.noarch", product_id: "python-os-brick-doc-2.5.10-3.12.3.noarch", }, }, { category: "product_version", name: "python-oslo.messaging-8.1.4-3.6.2.noarch", product: { name: "python-oslo.messaging-8.1.4-3.6.2.noarch", product_id: "python-oslo.messaging-8.1.4-3.6.2.noarch", }, }, { category: "product_version", name: "python-oslo.messaging-doc-8.1.4-3.6.2.noarch", product: { name: "python-oslo.messaging-doc-8.1.4-3.6.2.noarch", product_id: "python-oslo.messaging-doc-8.1.4-3.6.2.noarch", }, }, { category: "product_version", name: "python-pylons-sphinx-themes-1.0.11-1.3.1.noarch", product: { name: "python-pylons-sphinx-themes-1.0.11-1.3.1.noarch", product_id: "python-pylons-sphinx-themes-1.0.11-1.3.1.noarch", }, }, { category: "product_version", name: "python-pyroute2-0.5.2-4.3.2.noarch", product: { name: "python-pyroute2-0.5.2-4.3.2.noarch", product_id: "python-pyroute2-0.5.2-4.3.2.noarch", }, }, { category: "product_version", name: "python-urllib3-1.23-3.12.2.noarch", product: { name: "python-urllib3-1.23-3.12.2.noarch", product_id: "python-urllib3-1.23-3.12.2.noarch", }, }, { category: "product_version", name: "python-waitress-1.4.3-3.3.1.noarch", product: { name: "python-waitress-1.4.3-3.3.1.noarch", product_id: "python-waitress-1.4.3-3.3.1.noarch", }, }, { category: "product_version", name: "python-waitress-doc-1.4.3-3.3.1.noarch", product: { name: "python-waitress-doc-1.4.3-3.3.1.noarch", product_id: "python-waitress-doc-1.4.3-3.3.1.noarch", }, }, { category: "product_version", name: "python3-Django1-1.11.29-3.15.2.noarch", product: { name: "python3-Django1-1.11.29-3.15.2.noarch", product_id: "python3-Django1-1.11.29-3.15.2.noarch", }, }, { category: "product_version", name: "python3-ardana-packager-0.0.3-9.3.2.noarch", product: { name: "python3-ardana-packager-0.0.3-9.3.2.noarch", product_id: "python3-ardana-packager-0.0.3-9.3.2.noarch", }, }, { category: "product_version", name: "python3-heatclient-1.16.3-3.3.3.noarch", product: { name: "python3-heatclient-1.16.3-3.3.3.noarch", product_id: "python3-heatclient-1.16.3-3.3.3.noarch", }, }, { category: "product_version", name: "python3-os-brick-2.5.10-3.12.3.noarch", product: { name: "python3-os-brick-2.5.10-3.12.3.noarch", product_id: "python3-os-brick-2.5.10-3.12.3.noarch", }, }, { category: "product_version", name: "python3-oslo.messaging-8.1.4-3.6.2.noarch", product: { name: "python3-oslo.messaging-8.1.4-3.6.2.noarch", product_id: "python3-oslo.messaging-8.1.4-3.6.2.noarch", }, }, { category: "product_version", name: "python3-pylons-sphinx-themes-1.0.11-1.3.1.noarch", product: { name: "python3-pylons-sphinx-themes-1.0.11-1.3.1.noarch", product_id: "python3-pylons-sphinx-themes-1.0.11-1.3.1.noarch", }, }, { category: "product_version", name: "python3-pyroute2-0.5.2-4.3.2.noarch", product: { name: "python3-pyroute2-0.5.2-4.3.2.noarch", product_id: "python3-pyroute2-0.5.2-4.3.2.noarch", }, }, { category: "product_version", name: "python3-urllib3-1.23-3.12.2.noarch", product: { name: "python3-urllib3-1.23-3.12.2.noarch", product_id: "python3-urllib3-1.23-3.12.2.noarch", }, }, { category: "product_version", name: "python3-waitress-1.4.3-3.3.1.noarch", product: { name: "python3-waitress-1.4.3-3.3.1.noarch", product_id: "python3-waitress-1.4.3-3.3.1.noarch", }, }, { category: "product_version", name: "python3-waitress-doc-1.4.3-3.3.1.noarch", product: { name: "python3-waitress-doc-1.4.3-3.3.1.noarch", product_id: "python3-waitress-doc-1.4.3-3.3.1.noarch", }, }, { category: "product_version", name: "release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", product: { name: "release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", product_id: "release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", }, }, { category: "product_version", name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", product: { name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", product_id: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", }, }, { category: "product_version", name: "venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", product: { name: "venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", product_id: "venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", product: { name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", product_id: "venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", product: { name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", product_id: "venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", }, }, { category: "product_version", name: "venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", product: { name: "venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", product_id: "venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", product: { name: "venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", product_id: "venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", }, }, { category: "product_version", name: "venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", product: { name: "venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", product_id: "venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", }, }, { category: "product_version", name: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", product: { name: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", product_id: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", product: { name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", product_id: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", product: { name: "venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", product_id: "venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", product: { name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", product_id: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", product: { name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", product_id: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", }, }, { category: "product_version", name: "venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", product: { name: "venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", product_id: "venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", product: { name: "venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", product_id: "venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", }, }, { category: "product_version", name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", product: { name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", product_id: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", product: { name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", product_id: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", }, }, { category: "product_version", name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", product: { name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", product_id: "venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", product: { name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", product_id: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", product: { name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", product_id: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", }, }, { category: "product_version", name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", product: { name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", product_id: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.ppc64le", }, }, { category: "product_version", name: "grafana-6.2.5-3.12.2.ppc64le", product: { name: "grafana-6.2.5-3.12.2.ppc64le", product_id: "grafana-6.2.5-3.12.2.ppc64le", }, }, { category: "product_version", name: "kibana-4.6.3-4.3.2.ppc64le", product: { name: "kibana-4.6.3-4.3.2.ppc64le", product_id: "kibana-4.6.3-4.3.2.ppc64le", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.3.2.ppc64le", product: { name: "python-Pillow-5.2.0-3.3.2.ppc64le", product_id: "python-Pillow-5.2.0-3.3.2.ppc64le", }, }, { category: "product_version", name: "python-octavia-tempest-plugin-0.2.0-3.3.2.ppc64le", product: { name: "python-octavia-tempest-plugin-0.2.0-3.3.2.ppc64le", product_id: "python-octavia-tempest-plugin-0.2.0-3.3.2.ppc64le", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.3.2.ppc64le", product: { name: "python3-Pillow-5.2.0-3.3.2.ppc64le", product_id: "python3-Pillow-5.2.0-3.3.2.ppc64le", }, }, { category: "product_version", name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.ppc64le", product: { name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.ppc64le", product_id: "python3-octavia-tempest-plugin-0.2.0-3.3.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.ppc64le", product: { name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.ppc64le", product_id: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.ppc64le", product: { name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.ppc64le", product_id: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.ppc64le", product: { name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.ppc64le", product_id: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.ppc64le", product: { name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.ppc64le", product_id: "ruby2.1-rubygem-puma-2.16.0-4.9.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.ppc64le", product: { name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.ppc64le", product_id: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", product: { name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", product_id: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", product: { name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", product_id: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", }, }, { category: "product_version", name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", product: { name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", product_id: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.s390x", }, }, { category: "product_version", name: "grafana-6.2.5-3.12.2.s390x", product: { name: "grafana-6.2.5-3.12.2.s390x", product_id: "grafana-6.2.5-3.12.2.s390x", }, }, { category: "product_version", name: "kibana-4.6.3-4.3.2.s390x", product: { name: "kibana-4.6.3-4.3.2.s390x", product_id: "kibana-4.6.3-4.3.2.s390x", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.3.2.s390x", product: { name: "python-Pillow-5.2.0-3.3.2.s390x", product_id: "python-Pillow-5.2.0-3.3.2.s390x", }, }, { category: "product_version", name: "python-octavia-tempest-plugin-0.2.0-3.3.2.s390x", product: { name: "python-octavia-tempest-plugin-0.2.0-3.3.2.s390x", product_id: "python-octavia-tempest-plugin-0.2.0-3.3.2.s390x", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.3.2.s390x", product: { name: "python3-Pillow-5.2.0-3.3.2.s390x", product_id: "python3-Pillow-5.2.0-3.3.2.s390x", }, }, { category: "product_version", name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.s390x", product: { name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.s390x", product_id: "python3-octavia-tempest-plugin-0.2.0-3.3.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.s390x", product: { name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.s390x", product_id: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.s390x", product: { name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.s390x", product_id: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.s390x", product: { name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.s390x", product_id: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.s390x", product: { name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.s390x", product_id: "ruby2.1-rubygem-puma-2.16.0-4.9.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.s390x", product: { name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.s390x", product_id: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", product: { name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", product_id: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", product: { name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", product_id: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", }, }, { category: "product_version", name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", product: { name: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", product_id: "crowbar-core-devel-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", }, }, { category: "product_version", name: "grafana-6.2.5-3.12.2.x86_64", product: { name: "grafana-6.2.5-3.12.2.x86_64", product_id: "grafana-6.2.5-3.12.2.x86_64", }, }, { category: "product_version", name: "kibana-4.6.3-4.3.2.x86_64", product: { name: "kibana-4.6.3-4.3.2.x86_64", product_id: "kibana-4.6.3-4.3.2.x86_64", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.3.2.x86_64", product: { name: "python-Pillow-5.2.0-3.3.2.x86_64", product_id: "python-Pillow-5.2.0-3.3.2.x86_64", }, }, { category: "product_version", name: "python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", product: { name: "python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", product_id: "python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.3.2.x86_64", product: { name: "python3-Pillow-5.2.0-3.3.2.x86_64", product_id: "python3-Pillow-5.2.0-3.3.2.x86_64", }, }, { category: "product_version", name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", product: { name: "python3-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", product_id: "python3-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", product: { name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", product_id: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.x86_64", product: { name: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.x86_64", product_id: "ruby2.1-rubygem-activeresource-doc-4.0.0-4.3.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", product: { name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", product_id: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", product: { name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", product_id: "ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.x86_64", product: { name: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.x86_64", product_id: "ruby2.1-rubygem-puma-doc-2.16.0-4.9.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 9", product: { name: "SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:9", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud Crowbar 9", product: { name: "SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud-crowbar:9", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ansible1-1.9.6-9.7.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", }, product_reference: "ansible1-1.9.6-9.7.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", }, product_reference: "ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", }, product_reference: "ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", }, product_reference: "ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", }, product_reference: "ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", }, product_reference: "ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", }, product_reference: "ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", }, product_reference: "ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", }, product_reference: "ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", }, product_reference: "ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", }, product_reference: "ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", }, product_reference: "ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "grafana-6.2.5-3.12.2.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", }, product_reference: "grafana-6.2.5-3.12.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.3-4.3.2.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", }, product_reference: "kibana-4.6.3-4.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-api-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-api-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-dashboard-14.1.1~dev6-3.15.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", }, product_reference: "openstack-dashboard-14.1.1~dev6-3.15.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-agent-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-api-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-api-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-central-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-central-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-producer-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-sink-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-worker-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", }, product_reference: "openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", }, product_reference: "openstack-ironic-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-api-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", }, product_reference: "openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", }, product_reference: "openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-keystone-14.2.1~dev4-3.22.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", }, product_reference: "openstack-keystone-14.2.1~dev4-3.22.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", }, product_reference: "openstack-magnum-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-api-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", }, product_reference: "openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", }, product_reference: "openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-api-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-api-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-data-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-data-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-share-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-share-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", }, product_reference: "openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-server-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-api-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-console-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", }, product_reference: "openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-api-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", }, product_reference: "openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-Django1-1.11.29-3.15.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", }, product_reference: "python-Django1-1.11.29-3.15.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-5.2.0-3.3.2.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", }, product_reference: "python-Pillow-5.2.0-3.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-ardana-packager-0.0.3-9.3.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", }, product_reference: "python-ardana-packager-0.0.3-9.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-barbican-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", }, product_reference: "python-barbican-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-ceilometer-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", }, product_reference: "python-ceilometer-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-cinder-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", }, product_reference: "python-cinder-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-designate-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", }, product_reference: "python-designate-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-heatclient-1.16.3-3.3.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", }, product_reference: "python-heatclient-1.16.3-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-heatclient-doc-1.16.3-3.3.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", }, product_reference: "python-heatclient-doc-1.16.3-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-horizon-14.1.1~dev6-3.15.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", }, product_reference: "python-horizon-14.1.1~dev6-3.15.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-ironic-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", }, product_reference: "python-ironic-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-keystone-14.2.1~dev4-3.22.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", }, product_reference: "python-keystone-14.2.1~dev4-3.22.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-magnum-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", }, product_reference: "python-magnum-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-manila-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", }, product_reference: "python-manila-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-monasca-agent-2.8.2~dev5-3.9.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", }, product_reference: "python-monasca-agent-2.8.2~dev5-3.9.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-networking-vsphere-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", }, product_reference: "python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", }, product_reference: "python-neutron-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-tempest-plugin-0.2.0-3.3.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", }, product_reference: "python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-nova-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", }, product_reference: "python-nova-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-octavia-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", }, product_reference: "python-octavia-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", }, product_reference: "python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-openstack_auth-14.1.1~dev6-3.15.5.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", }, product_reference: "python-openstack_auth-14.1.1~dev6-3.15.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-os-brick-2.5.10-3.12.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", }, product_reference: "python-os-brick-2.5.10-3.12.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-os-brick-common-2.5.10-3.12.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", }, product_reference: "python-os-brick-common-2.5.10-3.12.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-oslo.messaging-8.1.4-3.6.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", }, product_reference: "python-oslo.messaging-8.1.4-3.6.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-pyroute2-0.5.2-4.3.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", }, product_reference: "python-pyroute2-0.5.2-4.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-urllib3-1.23-3.12.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", }, product_reference: "python-urllib3-1.23-3.12.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-waitress-1.4.3-3.3.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", }, product_reference: "python-waitress-1.4.3-3.3.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", }, product_reference: "release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", }, product_reference: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", }, product_reference: "venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", }, product_reference: "venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", }, product_reference: "venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", }, product_reference: "venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", }, product_reference: "venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", }, product_reference: "venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", }, product_reference: "venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", }, product_reference: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", }, product_reference: "venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", }, product_reference: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", }, product_reference: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", }, product_reference: "venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", }, product_reference: "venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", }, product_reference: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", }, product_reference: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", }, product_reference: "venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", }, product_reference: "crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", }, product_reference: "crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", }, product_reference: "crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "grafana-6.2.5-3.12.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", }, product_reference: "grafana-6.2.5-3.12.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "kibana-4.6.3-4.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", }, product_reference: "kibana-4.6.3-4.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-api-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", }, product_reference: "openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", }, product_reference: "openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-api-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", }, product_reference: "openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-dashboard-14.1.1~dev6-3.15.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", }, product_reference: "openstack-dashboard-14.1.1~dev6-3.15.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-agent-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-api-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-api-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-central-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-central-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-producer-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-sink-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-designate-worker-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", }, product_reference: "openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", }, product_reference: "openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", }, product_reference: "openstack-ironic-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-api-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", }, product_reference: "openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", }, product_reference: "openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-keystone-14.2.1~dev4-3.22.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", }, product_reference: "openstack-keystone-14.2.1~dev4-3.22.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", }, product_reference: "openstack-magnum-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-api-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", }, product_reference: "openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", }, product_reference: "openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-api-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-api-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-data-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-data-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-share-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", }, product_reference: "openstack-manila-share-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", }, product_reference: "openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-server-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", }, product_reference: "openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", }, product_reference: "openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-api-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-console-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", }, product_reference: "openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", }, product_reference: "openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-api-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", }, product_reference: "openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", }, product_reference: "openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-Django1-1.11.29-3.15.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", }, product_reference: "python-Django1-1.11.29-3.15.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-5.2.0-3.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", }, product_reference: "python-Pillow-5.2.0-3.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-barbican-7.0.1~dev24-3.9.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", }, product_reference: "python-barbican-7.0.1~dev24-3.9.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-ceilometer-11.1.1~dev7-3.16.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", }, product_reference: "python-ceilometer-11.1.1~dev7-3.16.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-cinder-13.0.10~dev12-3.22.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", }, product_reference: "python-cinder-13.0.10~dev12-3.22.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-designate-7.0.2~dev2-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", }, product_reference: "python-designate-7.0.2~dev2-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-heatclient-1.16.3-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", }, product_reference: "python-heatclient-1.16.3-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-heatclient-doc-1.16.3-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", }, product_reference: "python-heatclient-doc-1.16.3-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-horizon-14.1.1~dev6-3.15.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", }, product_reference: "python-horizon-14.1.1~dev6-3.15.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-ironic-11.1.5~dev6-3.19.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", }, product_reference: "python-ironic-11.1.5~dev6-3.19.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-keystone-14.2.1~dev4-3.22.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", }, product_reference: "python-keystone-14.2.1~dev4-3.22.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-magnum-7.2.1~dev1-3.13.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", }, product_reference: "python-magnum-7.2.1~dev1-3.13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-manila-7.4.2~dev31-4.24.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", }, product_reference: "python-manila-7.4.2~dev31-4.24.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-monasca-agent-2.8.2~dev5-3.9.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", }, product_reference: "python-monasca-agent-2.8.2~dev5-3.9.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-networking-vsphere-2.0.1~dev167-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", }, product_reference: "python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-13.0.8~dev68-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", }, product_reference: "python-neutron-13.0.8~dev68-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-tempest-plugin-0.2.0-3.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", }, product_reference: "python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-nova-18.3.1~dev38-3.25.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", }, product_reference: "python-nova-18.3.1~dev38-3.25.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-octavia-3.2.3~dev7-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", }, product_reference: "python-octavia-3.2.3~dev7-3.25.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", }, product_reference: "python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-openstack_auth-14.1.1~dev6-3.15.5.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", }, product_reference: "python-openstack_auth-14.1.1~dev6-3.15.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-os-brick-2.5.10-3.12.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", }, product_reference: "python-os-brick-2.5.10-3.12.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-os-brick-common-2.5.10-3.12.3.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", }, product_reference: "python-os-brick-common-2.5.10-3.12.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-oslo.messaging-8.1.4-3.6.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", }, product_reference: "python-oslo.messaging-8.1.4-3.6.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-pyroute2-0.5.2-4.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", }, product_reference: "python-pyroute2-0.5.2-4.3.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-urllib3-1.23-3.12.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", }, product_reference: "python-urllib3-1.23-3.12.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-waitress-1.4.3-3.3.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", }, product_reference: "python-waitress-1.4.3-3.3.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", }, product_reference: "release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", }, product_reference: "ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", }, product_reference: "ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", }, product_reference: "ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, ], }, vulnerabilities: [ { cve: "CVE-2019-16785", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-16785", }, ], notes: [ { category: "general", text: "Waitress through version 1.3.1 implemented a \"MAY\" part of the RFC7230 which states: \"Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR.\" Unfortunately if a front-end server does not parse header fields with an LF the same way as it does those with a CRLF it can lead to the front-end and the back-end server parsing the same HTTP message in two different ways. This can lead to a potential for HTTP request smuggling/splitting whereby Waitress may see two requests while the front-end server only sees a single HTTP message. This issue is fixed in Waitress 1.4.0.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-16785", url: "https://www.suse.com/security/cve/CVE-2019-16785", }, { category: "external", summary: "SUSE Bug 1161088 for CVE-2019-16785", url: "https://bugzilla.suse.com/1161088", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2019-16785", }, { cve: "CVE-2019-16786", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-16786", }, ], notes: [ { category: "general", text: "Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall through and use the Content-Length header instead. According to the HTTP standard Transfer-Encoding should be a comma separated list, with the inner-most encoding first, followed by any further transfer codings, ending with chunked. Requests sent with: \"Transfer-Encoding: gzip, chunked\" would incorrectly get ignored, and the request would use a Content-Length header instead to determine the body size of the HTTP message. This could allow for Waitress to treat a single request as multiple requests in the case of HTTP pipelining. This issue is fixed in Waitress 1.4.0.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-16786", url: "https://www.suse.com/security/cve/CVE-2019-16786", }, { category: "external", summary: "SUSE Bug 1161089 for CVE-2019-16786", url: "https://bugzilla.suse.com/1161089", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2019-16786", }, { cve: "CVE-2019-16789", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-16789", }, ], notes: [ { category: "general", text: "In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests containing special whitespace characters in the Transfer-Encoding header would get parsed by Waitress as being a chunked request, but a front-end server would use the Content-Length instead as the Transfer-Encoding header is considered invalid due to containing invalid characters. If a front-end server does HTTP pipelining to a backend Waitress server this could lead to HTTP request splitting which may lead to potential cache poisoning or unexpected information disclosure. This issue is fixed in Waitress 1.4.1 through more strict HTTP field validation.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-16789", url: "https://www.suse.com/security/cve/CVE-2019-16789", }, { category: "external", summary: "SUSE Bug 1160790 for CVE-2019-16789", url: "https://bugzilla.suse.com/1160790", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2019-16789", }, { cve: "CVE-2019-16792", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-16792", }, ], notes: [ { category: "general", text: "Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally. If two Content-Length headers are sent in a single request, Waitress would treat the request as having no body, thereby treating the body of the request as a new request in HTTP pipelining. This issue is fixed in Waitress 1.4.0.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-16792", url: "https://www.suse.com/security/cve/CVE-2019-16792", }, { category: "external", summary: "SUSE Bug 1161670 for CVE-2019-16792", url: "https://bugzilla.suse.com/1161670", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2019-16792", }, { cve: "CVE-2019-16865", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-16865", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-16865", url: "https://www.suse.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "SUSE Bug 1153191 for CVE-2019-16865", url: "https://bugzilla.suse.com/1153191", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "low", }, ], title: "CVE-2019-16865", }, { cve: "CVE-2019-19844", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19844", }, ], notes: [ { category: "general", text: "Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of Unicode characters) would allow an attacker to be sent a password reset token for the matched user account. (One mitigation in the new releases is to send password reset tokens only to the registered user email address.)", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19844", url: "https://www.suse.com/security/cve/CVE-2019-19844", }, { category: "external", summary: "SUSE Bug 1159447 for CVE-2019-19844", url: "https://bugzilla.suse.com/1159447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2019-19844", }, { cve: "CVE-2019-19911", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19911", }, ], notes: [ { category: "general", text: "There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux running 64-bit Python this results in the process being terminated by the OOM killer.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19911", url: "https://www.suse.com/security/cve/CVE-2019-19911", }, { category: "external", summary: "SUSE Bug 1160192 for CVE-2019-19911", url: "https://bugzilla.suse.com/1160192", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2019-19911", }, { cve: "CVE-2019-3828", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-3828", }, ], notes: [ { category: "general", text: "Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-3828", url: "https://www.suse.com/security/cve/CVE-2019-3828", }, { category: "external", summary: "SUSE Bug 1126503 for CVE-2019-3828", url: "https://bugzilla.suse.com/1126503", }, { category: "external", summary: "SUSE Bug 1164137 for CVE-2019-3828", url: "https://bugzilla.suse.com/1164137", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", version: "3.0", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2019-3828", }, { cve: "CVE-2020-10177", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10177", }, ], notes: [ { category: "general", text: "Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10177", url: "https://www.suse.com/security/cve/CVE-2020-10177", }, { category: "external", summary: "SUSE Bug 1173413 for CVE-2020-10177", url: "https://bugzilla.suse.com/1173413", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-10177", }, { cve: "CVE-2020-10378", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10378", }, ], notes: [ { category: "general", text: "In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10378", url: "https://www.suse.com/security/cve/CVE-2020-10378", }, { category: "external", summary: "SUSE Bug 1161670 for CVE-2020-10378", url: "https://bugzilla.suse.com/1161670", }, { category: "external", summary: "SUSE Bug 1173416 for CVE-2020-10378", url: "https://bugzilla.suse.com/1173416", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-10378", }, { cve: "CVE-2020-10743", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10743", }, ], notes: [ { category: "general", text: "It was discovered that OpenShift Container Platform's (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. This flaw allows an attacker to trick a user into performing arbitrary actions in OCP's distribution of Kibana, such as clickjacking.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10743", url: "https://www.suse.com/security/cve/CVE-2020-10743", }, { category: "external", summary: "SUSE Bug 1171909 for CVE-2020-10743", url: "https://bugzilla.suse.com/1171909", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.9, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "low", }, ], title: "CVE-2020-10743", }, { cve: "CVE-2020-10755", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10755", }, ], notes: [ { category: "general", text: "An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with the Dell EMC ScaleIO or VxFlex OS backend storage driver, credentials for the entire backend are exposed in the ``connection_info`` element in all Block Storage v3 Attachments API calls containing that element. This flaw enables an end-user to create a volume, make an API call to show the attachment detail information, and retrieve a username and password that may be used to connect to another user's volume. Additionally, these credentials are valid for the ScaleIO or VxFlex OS Management API, should an attacker discover the Management API endpoint. Source: OpenStack project", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10755", url: "https://www.suse.com/security/cve/CVE-2020-10755", }, { category: "external", summary: "SUSE Bug 1172522 for CVE-2020-10755", url: "https://bugzilla.suse.com/1172522", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-10755", }, { cve: "CVE-2020-10994", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10994", }, ], notes: [ { category: "general", text: "In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10994", url: "https://www.suse.com/security/cve/CVE-2020-10994", }, { category: "external", summary: "SUSE Bug 1173418 for CVE-2020-10994", url: "https://bugzilla.suse.com/1173418", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-10994", }, { cve: "CVE-2020-11538", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11538", }, ], notes: [ { category: "general", text: "In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11538", url: "https://www.suse.com/security/cve/CVE-2020-11538", }, { category: "external", summary: "SUSE Bug 1173420 for CVE-2020-11538", url: "https://bugzilla.suse.com/1173420", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2020-11538", }, { cve: "CVE-2020-12052", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-12052", }, ], notes: [ { category: "general", text: "Grafana version < 6.7.3 is vulnerable for annotation popup XSS.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-12052", url: "https://www.suse.com/security/cve/CVE-2020-12052", }, { category: "external", summary: "SUSE Bug 1170657 for CVE-2020-12052", url: "https://bugzilla.suse.com/1170657", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-12052", }, { cve: "CVE-2020-13254", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-13254", }, ], notes: [ { category: "general", text: "An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-13254", url: "https://www.suse.com/security/cve/CVE-2020-13254", }, { category: "external", summary: "SUSE Bug 1172166 for CVE-2020-13254", url: "https://bugzilla.suse.com/1172166", }, { category: "external", summary: "SUSE Bug 1172167 for CVE-2020-13254", url: "https://bugzilla.suse.com/1172167", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-13254", }, { cve: "CVE-2020-13379", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-13379", }, ], notes: [ { category: "general", text: "The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information about the network that Grafana is running on. Furthermore, passing invalid URL objects could be used for DOS'ing Grafana via SegFault.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-13379", url: "https://www.suse.com/security/cve/CVE-2020-13379", }, { category: "external", summary: "SUSE Bug 1172409 for CVE-2020-13379", url: "https://bugzilla.suse.com/1172409", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2020-13379", }, { cve: "CVE-2020-13596", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-13596", }, ], notes: [ { category: "general", text: "An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility of an XSS attack.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-13596", url: "https://www.suse.com/security/cve/CVE-2020-13596", }, { category: "external", summary: "SUSE Bug 1172166 for CVE-2020-13596", url: "https://bugzilla.suse.com/1172166", }, { category: "external", summary: "SUSE Bug 1172167 for CVE-2020-13596", url: "https://bugzilla.suse.com/1172167", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-13596", }, { cve: "CVE-2020-5311", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-5311", }, ], notes: [ { category: "general", text: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-5311", url: "https://www.suse.com/security/cve/CVE-2020-5311", }, { category: "external", summary: "SUSE Bug 1160151 for CVE-2020-5311", url: "https://bugzilla.suse.com/1160151", }, { category: "external", summary: "SUSE Bug 1173420 for CVE-2020-5311", url: "https://bugzilla.suse.com/1173420", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2020-5311", }, { cve: "CVE-2020-5312", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-5312", }, ], notes: [ { category: "general", text: "libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-5312", url: "https://www.suse.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "SUSE Bug 1160152 for CVE-2020-5312", url: "https://bugzilla.suse.com/1160152", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2020-5312", }, { cve: "CVE-2020-5313", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-5313", }, ], notes: [ { category: "general", text: "libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-5313", url: "https://www.suse.com/security/cve/CVE-2020-5313", }, { category: "external", summary: "SUSE Bug 1160153 for CVE-2020-5313", url: "https://bugzilla.suse.com/1160153", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2020-5313", }, { cve: "CVE-2020-7471", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-7471", }, ], notes: [ { category: "general", text: "Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitably crafted delimiter to a contrib.postgres.aggregates.StringAgg instance, it was possible to break escaping and inject malicious SQL.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-7471", url: "https://www.suse.com/security/cve/CVE-2020-7471", }, { category: "external", summary: "SUSE Bug 1161919 for CVE-2020-7471", url: "https://bugzilla.suse.com/1161919", }, { category: "external", summary: "SUSE Bug 1161920 for CVE-2020-7471", url: "https://bugzilla.suse.com/1161920", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2020-7471", }, { cve: "CVE-2020-8184", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-8184", }, ], notes: [ { category: "general", text: "A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie prefix.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-8184", url: "https://www.suse.com/security/cve/CVE-2020-8184", }, { category: "external", summary: "SUSE Bug 1173351 for CVE-2020-8184", url: "https://bugzilla.suse.com/1173351", }, { category: "external", summary: "SUSE Bug 1177352 for CVE-2020-8184", url: "https://bugzilla.suse.com/1177352", }, { category: "external", summary: "SUSE Bug 1193081 for CVE-2020-8184", url: "https://bugzilla.suse.com/1193081", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.8, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "moderate", }, ], title: "CVE-2020-8184", }, { cve: "CVE-2020-9402", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-9402", }, ], notes: [ { category: "general", text: "Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possible to break escaping and inject malicious SQL.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-9402", url: "https://www.suse.com/security/cve/CVE-2020-9402", }, { category: "external", summary: "SUSE Bug 1165022 for CVE-2020-9402", url: "https://bugzilla.suse.com/1165022", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ansible1-1.9.6-9.7.2.noarch", "SUSE OpenStack Cloud 9:ardana-ansible-9.0+git.1591138508.e269bdb-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-cobbler-9.0+git.1588181228.bae3b1f-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-glance-9.0+git.1593631708.9354a78-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-input-model-9.0+git.1589740948.c24fc0b-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-logging-9.0+git.1591193994.d93b668-3.13.2.noarch", "SUSE OpenStack Cloud 9:ardana-manila-9.0+git.1594158642.b5905e4-3.12.2.noarch", "SUSE OpenStack Cloud 9:ardana-monasca-9.0+git.1589385256.7fbfaaf-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-mq-9.0+git.1593618110.cbd1a37-3.16.2.noarch", "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1590756257.e09d54f-3.22.2.noarch", "SUSE OpenStack Cloud 9:ardana-octavia-9.0+git.1590079609.a2ae6ab-3.19.2.noarch", "SUSE OpenStack Cloud 9:ardana-tempest-9.0+git.1593033709.9495bb2-3.16.2.noarch", "SUSE OpenStack Cloud 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-ardana-packager-0.0.3-9.3.2.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev12-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.17.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.3~dev35-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev6-4.18.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev6-4.15.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev31-3.21.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.17.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev68-6.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev38-3.19.3.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.19.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.14.2.noarch", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-core-branding-upstream-6.0+git.1594619891.b75a61d0d-3.25.5.x86_64", "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1591795073.49cb6400e-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.2.5-3.12.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.3-4.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-central-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-compute-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-ipmi-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-agent-notification-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ceilometer-polling-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-agent-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-api-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-central-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-producer-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-sink-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-designate-worker-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-api-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-magnum-conductor-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-api-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-data-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-scheduler-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-manila-share-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-doc-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-dvs-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-vsphere-ovsvapp-agent-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-agent-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-amphora-image-x86_64-0.1.4-7.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-api-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-health-manager-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-housekeeping-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-octavia-worker-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-resource-agents-1.0+git.1569436425.8b9c49f-5.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.15.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.9.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ceilometer-11.1.1~dev7-3.16.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev12-3.22.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-designate-7.0.2~dev2-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heatclient-doc-1.16.3-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev6-3.19.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev4-3.22.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-magnum-7.2.1~dev1-3.13.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-manila-7.4.2~dev31-4.24.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-monasca-agent-2.8.2~dev5-3.9.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-networking-vsphere-2.0.1~dev167-3.3.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev68-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-tempest-plugin-0.2.0-3.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev38-3.25.4.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-3.2.3~dev7-3.25.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-octavia-tempest-plugin-0.2.0-3.3.2.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev6-3.15.5.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-os-brick-common-2.5.10-3.12.3.noarch", "SUSE OpenStack Cloud Crowbar 9:python-oslo.messaging-8.1.4-3.6.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-pyroute2-0.5.2-4.3.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-urllib3-1.23-3.12.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-waitress-1.4.3-3.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20200610-3.21.4.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activeresource-4.0.0-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-json-1_7-1.7.7-4.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-puma-2.16.0-4.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-08-06T22:09:12Z", details: "important", }, ], title: "CVE-2020-9402", }, ], }
gsd-2020-5311
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
Aliases
Aliases
{ GSD: { alias: "CVE-2020-5311", description: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", id: "GSD-2020-5311", references: [ "https://www.suse.com/security/cve/CVE-2020-5311.html", "https://www.debian.org/security/2020/dsa-4631", "https://access.redhat.com/errata/RHSA-2021:0420", "https://access.redhat.com/errata/RHSA-2020:0580", "https://access.redhat.com/errata/RHSA-2020:0566", "https://ubuntu.com/security/CVE-2020-5311", "https://advisories.mageia.org/CVE-2020-5311.html", "https://linux.oracle.com/cve/CVE-2020-5311.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2020-5311", ], details: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", id: "GSD-2020-5311", modified: "2023-12-13T01:22:03.339200Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-5311", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", refsource: "MISC", url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { name: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", refsource: "MISC", url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { name: "FEDORA-2020-df444e464e", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { name: "USN-4272-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/4272-1/", }, { name: "RHSA-2020:0566", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { name: "FEDORA-2020-5cdbb19cca", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { name: "DSA-4631", refsource: "DEBIAN", url: "https://www.debian.org/security/2020/dsa-4631", }, { name: "RHSA-2020:0580", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "<6.2.2", affected_versions: "All versions before 6.2.2", cvss_v2: "AV:N/AC:L/Au:N/C:P/I:P/A:P", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-120", "CWE-937", ], date: "2020-08-18", description: "`libImaging/SgiRleDecode.c` in Pillow has an SGI buffer overflow.", fixed_versions: [ "6.2.2", ], identifier: "CVE-2020-5311", identifiers: [ "CVE-2020-5311", ], not_impacted: "All versions starting from 6.2.2", package_slug: "pypi/Pillow", pubdate: "2020-01-03", solution: "Upgrade to version 6.2.2 or above.", title: "Buffer Overflow", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", ], uuid: "752aa944-4ae1-4f71-b11b-21c4028770ed", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "6.2.2", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-5311", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-120", }, ], }, ], }, references: { reference_data: [ { name: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", refsource: "MISC", tags: [ "Release Notes", "Third Party Advisory", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { name: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", refsource: "MISC", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { name: "FEDORA-2020-df444e464e", refsource: "FEDORA", tags: [ "Issue Tracking", "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { name: "USN-4272-1", refsource: "UBUNTU", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/4272-1/", }, { name: "RHSA-2020:0566", refsource: "REDHAT", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { name: "FEDORA-2020-5cdbb19cca", refsource: "FEDORA", tags: [ "Issue Tracking", "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { name: "DSA-4631", refsource: "DEBIAN", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2020/dsa-4631", }, { name: "RHSA-2020:0580", refsource: "REDHAT", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2020:0580", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "HIGH", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 5.9, }, }, lastModifiedDate: "2020-08-18T15:05Z", publishedDate: "2020-01-03T01:15Z", }, }, }
ghsa-r7rm-8j6h-r933
Vulnerability from github
Published
2022-05-24 17:05
Modified
2024-10-08 13:04
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.3 (Critical) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
9.3 (Critical) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Summary
Buffer Copy without Checking Size of Input in Pillow
Details
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
{ affected: [ { database_specific: { last_known_affected_version_range: "<= 6.2.1", }, package: { ecosystem: "PyPI", name: "pillow", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "6.2.2", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2020-5311", ], database_specific: { cwe_ids: [ "CWE-120", ], github_reviewed: true, github_reviewed_at: "2022-06-23T18:03:29Z", nvd_published_at: "2020-01-03T01:15:00Z", severity: "CRITICAL", }, details: "`libImaging/SgiRleDecode.c` in Pillow before 6.2.2 has an SGI buffer overflow.", id: "GHSA-r7rm-8j6h-r933", modified: "2024-10-08T13:04:08Z", published: "2022-05-24T17:05:33Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-5311", }, { type: "WEB", url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2020:0580", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-r7rm-8j6h-r933", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/pillow/PYSEC-2020-82.yaml", }, { type: "PACKAGE", url: "https://github.com/python-pillow/Pillow", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P", }, { type: "WEB", url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { type: "WEB", url: "https://usn.ubuntu.com/4272-1", }, { type: "WEB", url: "https://www.debian.org/security/2020/dsa-4631", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, { score: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", type: "CVSS_V4", }, ], summary: "Buffer Copy without Checking Size of Input in Pillow", }
fkie_cve-2020-5311
Vulnerability from fkie_nvd
Published
2020-01-03 01:15
Modified
2024-11-21 05:33
Severity ?
Summary
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| python | pillow | * | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 19.10 | |
| debian | debian_linux | 9.0 | |
| debian | debian_linux | 10.0 | |
| fedoraproject | fedora | 30 | |
| fedoraproject | fedora | 31 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*", matchCriteriaId: "7AB2F1CD-5972-4F7B-A025-D92709CABD9E", versionEndExcluding: "6.2.2", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*", matchCriteriaId: "B85E9B9B-ADDB-4D2F-A857-685BD30CE856", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", matchCriteriaId: "A31C8344-3E02-4EB8-8BD8-4C84B7959624", vulnerable: true, }, { criteria: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", matchCriteriaId: "DEECE5FC-CACF-4496-A3E7-164736409252", vulnerable: true, }, { criteria: "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", matchCriteriaId: "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", vulnerable: true, }, { criteria: "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", matchCriteriaId: "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3", vulnerable: true, }, { criteria: "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", matchCriteriaId: "80F0FA5D-8D3B-4C0E-81E2-87998286AF33", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.", }, { lang: "es", value: "El archivo libImaging/SgiRleDecode.c en Pillow versiones anteriores a la versión 6.2.2, tiene un desbordamiento de búfer de SGI.", }, ], id: "CVE-2020-5311", lastModified: "2024-11-21T05:33:53.303", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2020-01-03T01:15:11.167", references: [ { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2020:0580", }, { source: "cve@mitre.org", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { source: "cve@mitre.org", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { source: "cve@mitre.org", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { source: "cve@mitre.org", tags: [ "Release Notes", "Third Party Advisory", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/4272-1/", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2020/dsa-4631", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2020:0566", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2020:0580", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Release Notes", "Third Party Advisory", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/4272-1/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2020/dsa-4631", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-120", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.