Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-21239 (GCVE-0-2021-21239)
Vulnerability from cvelistv5 – Published: 2021-01-21 14:15 – Updated: 2024-08-03 18:09
VLAI?
EPSS
Summary
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.
Severity ?
6.5 (Medium)
CWE
- CWE-347 - Improper Verification of Cryptographic Signature
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| IdentityPython | pysaml2 |
Affected:
< 6.5.0
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T18:09:14.896Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://pypi.org/project/pysaml2"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"name": "[debian-lts-announce] 20210226 [SECURITY] [DLA 2577-1] python-pysaml2 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "pysaml2",
"vendor": "IdentityPython",
"versions": [
{
"status": "affected",
"version": "\u003c 6.5.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-347",
"description": "CWE-347 Improper Verification of Cryptographic Signature",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-02-26T06:06:18",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://pypi.org/project/pysaml2"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"name": "[debian-lts-announce] 20210226 [SECURITY] [DLA 2577-1] python-pysaml2 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
}
],
"source": {
"advisory": "GHSA-5p3x-r448-pc62",
"discovery": "UNKNOWN"
},
"title": "Open default xmlsec1 key-type preference",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2021-21239",
"STATE": "PUBLIC",
"TITLE": "Open default xmlsec1 key-type preference"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "pysaml2",
"version": {
"version_data": [
{
"version_value": "\u003c 6.5.0"
}
]
}
}
]
},
"vendor_name": "IdentityPython"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-347 Improper Verification of Cryptographic Signature"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62",
"refsource": "CONFIRM",
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"name": "https://pypi.org/project/pysaml2",
"refsource": "MISC",
"url": "https://pypi.org/project/pysaml2"
},
{
"name": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html",
"refsource": "MISC",
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
},
{
"name": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0",
"refsource": "MISC",
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"name": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99",
"refsource": "MISC",
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"name": "[debian-lts-announce] 20210226 [SECURITY] [DLA 2577-1] python-pysaml2 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
}
]
},
"source": {
"advisory": "GHSA-5p3x-r448-pc62",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2021-21239",
"datePublished": "2021-01-21T14:15:21",
"dateReserved": "2020-12-22T00:00:00",
"dateUpdated": "2024-08-03T18:09:14.896Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:pysaml2_project:pysaml2:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.5.0\", \"matchCriteriaId\": \"A94B9227-93A8-4D3D-A8C3-E56F3A84F8B2\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.\"}, {\"lang\": \"es\", \"value\": \"PySAML2 es una implementaci\\u00f3n de Python pura de SAML Versi\\u00f3n 2 Est\\u00e1ndar. PySAML2 versiones anteriores a 6.5.0, presenta una verificaci\\u00f3n inapropiada de una vulnerabilidad de firma criptogr\\u00e1fica. Los usuarios de pysaml2 que utilizan el backend CryptoBackendXmlSec1 predeterminado y necesitan verificar los documentos SAML firmados est\\u00e1n afectados. PySAML2 no garantiza que un documento SAML firmado est\\u00e9 correctamente firmado. El backend CryptoBackendXmlSec1 predeterminado est\\u00e1 usando el binario xmlsec1 para verificar la firma de los documentos SAML firmados, pero por defecto xmlsec1 acepta cualquier tipo de clave que se encuentre dentro del documento dado. xmlsec1 debe configurarse expl\\u00edcitamente para usar solo _x509 certificates_ para el proceso de verificaci\\u00f3n de la firma del documento SAML. Esto es corregido en PySAML2 versi\\u00f3n 6.5.0\"}]",
"id": "CVE-2021-21239",
"lastModified": "2024-11-21T05:47:50.527",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:P/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2021-01-21T15:15:14.423",
"references": "[{\"url\": \"https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://pypi.org/project/pysaml2\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Product\", \"Third Party Advisory\"]}, {\"url\": \"https://www.aleksey.com/pipermail/xmlsec/2013/009717.html\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Exploit\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://pypi.org/project/pysaml2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Product\", \"Third Party Advisory\"]}, {\"url\": \"https://www.aleksey.com/pipermail/xmlsec/2013/009717.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Mailing List\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-347\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-21239\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2021-01-21T15:15:14.423\",\"lastModified\":\"2024-11-21T05:47:50.527\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.\"},{\"lang\":\"es\",\"value\":\"PySAML2 es una implementaci\u00f3n de Python pura de SAML Versi\u00f3n 2 Est\u00e1ndar. PySAML2 versiones anteriores a 6.5.0, presenta una verificaci\u00f3n inapropiada de una vulnerabilidad de firma criptogr\u00e1fica. Los usuarios de pysaml2 que utilizan el backend CryptoBackendXmlSec1 predeterminado y necesitan verificar los documentos SAML firmados est\u00e1n afectados. PySAML2 no garantiza que un documento SAML firmado est\u00e9 correctamente firmado. El backend CryptoBackendXmlSec1 predeterminado est\u00e1 usando el binario xmlsec1 para verificar la firma de los documentos SAML firmados, pero por defecto xmlsec1 acepta cualquier tipo de clave que se encuentre dentro del documento dado. xmlsec1 debe configurarse expl\u00edcitamente para usar solo _x509 certificates_ para el proceso de verificaci\u00f3n de la firma del documento SAML. Esto es corregido en PySAML2 versi\u00f3n 6.5.0\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-347\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:pysaml2_project:pysaml2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5.0\",\"matchCriteriaId\":\"A94B9227-93A8-4D3D-A8C3-E56F3A84F8B2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}],\"references\":[{\"url\":\"https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://pypi.org/project/pysaml2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Product\",\"Third Party Advisory\"]},{\"url\":\"https://www.aleksey.com/pipermail/xmlsec/2013/009717.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://pypi.org/project/pysaml2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\",\"Third Party Advisory\"]},{\"url\":\"https://www.aleksey.com/pipermail/xmlsec/2013/009717.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]}]}}"
}
}
PYSEC-2021-49
Vulnerability from pysec - Published: 2021-01-21 15:15 - Updated: 2021-03-10 21:00
VLAI?
Details
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only x509 certificates for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.
Impacted products
| Name | purl | pysaml2 | pkg:pypi/pysaml2 |
|---|
Aliases
{
"affected": [
{
"package": {
"ecosystem": "PyPI",
"name": "pysaml2",
"purl": "pkg:pypi/pysaml2"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "46578df0695269a16f1c94171f1429873f90ed99"
}
],
"repo": "https://github.com/IdentityPython/pysaml2",
"type": "GIT"
},
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.5.0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.4.3",
"1.0.1",
"1.0.2",
"1.0.3",
"1.1.0",
"2.0.0",
"2.1.0",
"2.2.0",
"2.3.0",
"2.4.0",
"3.0.0",
"3.0.2",
"4.0.0",
"4.0.1",
"4.0.2",
"4.0.3",
"4.0.4",
"4.0.5rc1",
"4.0.5",
"4.1.0",
"4.2.0",
"4.3.0",
"4.4.0",
"4.5.0",
"4.6.0",
"4.6.1",
"4.6.2",
"4.6.3",
"4.6.4",
"4.6.5",
"4.7.0",
"4.8.0",
"4.9.0",
"5.0.0",
"5.1.0",
"5.2.0",
"5.3.0",
"5.4.0",
"6.0.0",
"6.1.0",
"6.2.0",
"6.3.0",
"6.3.1",
"6.4.0",
"6.4.1"
]
}
],
"aliases": [
"CVE-2021-21239",
"GHSA-5p3x-r448-pc62"
],
"details": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"id": "PYSEC-2021-49",
"modified": "2021-03-10T21:00:00Z",
"published": "2021-01-21T15:15:00Z",
"references": [
{
"type": "WEB",
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
},
{
"type": "PACKAGE",
"url": "https://pypi.org/project/pysaml2"
},
{
"type": "WEB",
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"type": "ADVISORY",
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"type": "FIX",
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
}
]
}
GSD-2021-21239
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-21239",
"description": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"id": "GSD-2021-21239",
"references": [
"https://www.suse.com/security/cve/CVE-2021-21239.html",
"https://ubuntu.com/security/CVE-2021-21239",
"https://security.archlinux.org/CVE-2021-21239"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-21239"
],
"details": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"id": "GSD-2021-21239",
"modified": "2023-12-13T01:23:10.657793Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2021-21239",
"STATE": "PUBLIC",
"TITLE": "Open default xmlsec1 key-type preference"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "pysaml2",
"version": {
"version_data": [
{
"version_value": "\u003c 6.5.0"
}
]
}
}
]
},
"vendor_name": "IdentityPython"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-347 Improper Verification of Cryptographic Signature"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62",
"refsource": "CONFIRM",
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"name": "https://pypi.org/project/pysaml2",
"refsource": "MISC",
"url": "https://pypi.org/project/pysaml2"
},
{
"name": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html",
"refsource": "MISC",
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
},
{
"name": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0",
"refsource": "MISC",
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"name": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99",
"refsource": "MISC",
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"name": "[debian-lts-announce] 20210226 [SECURITY] [DLA 2577-1] python-pysaml2 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
}
]
},
"source": {
"advisory": "GHSA-5p3x-r448-pc62",
"discovery": "UNKNOWN"
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c6.5.0",
"affected_versions": "All versions before 6.5.0",
"cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-347",
"CWE-937"
],
"date": "2021-03-10",
"description": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default `CryptoBackendXmlSec1` backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default `CryptoBackendXmlSec1` backend is using the `xmlsec1` binary to verify the signature of signed SAML documents, but by default `xmlsec1` accepts any type of key found within the given document. `xmlsec1` needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 ",
"fixed_versions": [
"6.5.0"
],
"identifier": "CVE-2021-21239",
"identifiers": [
"CVE-2021-21239",
"GHSA-5p3x-r448-pc62"
],
"not_impacted": "All versions starting from 6.5.0",
"package_slug": "pypi/pysaml2",
"pubdate": "2021-01-21",
"solution": "Upgrade to version 6.5.0 or above.",
"title": "Improper Verification of Cryptographic Signature",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2021-21239"
],
"uuid": "e83e0ef2-eae8-4b89-9c1d-c940134fef43"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:pysaml2_project:pysaml2:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.5.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2021-21239"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-347"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html",
"refsource": "MISC",
"tags": [
"Exploit",
"Mailing List",
"Third Party Advisory"
],
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
},
{
"name": "https://pypi.org/project/pysaml2",
"refsource": "MISC",
"tags": [
"Product",
"Third Party Advisory"
],
"url": "https://pypi.org/project/pysaml2"
},
{
"name": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"name": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"name": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"name": "[debian-lts-announce] 20210226 [SECURITY] [DLA 2577-1] python-pysaml2 security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2021-03-10T21:00Z",
"publishedDate": "2021-01-21T15:15Z"
}
}
}
FKIE_CVE-2021-21239
Vulnerability from fkie_nvd - Published: 2021-01-21 15:15 - Updated: 2024-11-21 05:47
Severity ?
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Summary
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| pysaml2_project | pysaml2 | * | |
| debian | debian_linux | 9.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:pysaml2_project:pysaml2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A94B9227-93A8-4D3D-A8C3-E56F3A84F8B2",
"versionEndExcluding": "6.5.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0."
},
{
"lang": "es",
"value": "PySAML2 es una implementaci\u00f3n de Python pura de SAML Versi\u00f3n 2 Est\u00e1ndar. PySAML2 versiones anteriores a 6.5.0, presenta una verificaci\u00f3n inapropiada de una vulnerabilidad de firma criptogr\u00e1fica. Los usuarios de pysaml2 que utilizan el backend CryptoBackendXmlSec1 predeterminado y necesitan verificar los documentos SAML firmados est\u00e1n afectados. PySAML2 no garantiza que un documento SAML firmado est\u00e9 correctamente firmado. El backend CryptoBackendXmlSec1 predeterminado est\u00e1 usando el binario xmlsec1 para verificar la firma de los documentos SAML firmados, pero por defecto xmlsec1 acepta cualquier tipo de clave que se encuentre dentro del documento dado. xmlsec1 debe configurarse expl\u00edcitamente para usar solo _x509 certificates_ para el proceso de verificaci\u00f3n de la firma del documento SAML. Esto es corregido en PySAML2 versi\u00f3n 6.5.0"
}
],
"id": "CVE-2021-21239",
"lastModified": "2024-11-21T05:47:50.527",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-01-21T15:15:14.423",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
},
{
"source": "security-advisories@github.com",
"tags": [
"Product",
"Third Party Advisory"
],
"url": "https://pypi.org/project/pysaml2"
},
{
"source": "security-advisories@github.com",
"tags": [
"Exploit",
"Mailing List",
"Third Party Advisory"
],
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Product",
"Third Party Advisory"
],
"url": "https://pypi.org/project/pysaml2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Mailing List",
"Third Party Advisory"
],
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-347"
}
],
"source": "security-advisories@github.com",
"type": "Primary"
}
]
}
OPENSUSE-SU-2024:11258-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
python36-pysaml2-7.0.1-1.2 on GA media
Notes
Title of the patch
python36-pysaml2-7.0.1-1.2 on GA media
Description of the patch
These are all security issues fixed in the python36-pysaml2-7.0.1-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11258
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python36-pysaml2-7.0.1-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python36-pysaml2-7.0.1-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11258",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11258-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-5390 page",
"url": "https://www.suse.com/security/cve/CVE-2020-5390/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21238 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21239 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21239/"
}
],
"title": "python36-pysaml2-7.0.1-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11258-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python36-pysaml2-7.0.1-1.2.aarch64",
"product": {
"name": "python36-pysaml2-7.0.1-1.2.aarch64",
"product_id": "python36-pysaml2-7.0.1-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "python38-pysaml2-7.0.1-1.2.aarch64",
"product": {
"name": "python38-pysaml2-7.0.1-1.2.aarch64",
"product_id": "python38-pysaml2-7.0.1-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "python39-pysaml2-7.0.1-1.2.aarch64",
"product": {
"name": "python39-pysaml2-7.0.1-1.2.aarch64",
"product_id": "python39-pysaml2-7.0.1-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python36-pysaml2-7.0.1-1.2.ppc64le",
"product": {
"name": "python36-pysaml2-7.0.1-1.2.ppc64le",
"product_id": "python36-pysaml2-7.0.1-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python38-pysaml2-7.0.1-1.2.ppc64le",
"product": {
"name": "python38-pysaml2-7.0.1-1.2.ppc64le",
"product_id": "python38-pysaml2-7.0.1-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python39-pysaml2-7.0.1-1.2.ppc64le",
"product": {
"name": "python39-pysaml2-7.0.1-1.2.ppc64le",
"product_id": "python39-pysaml2-7.0.1-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python36-pysaml2-7.0.1-1.2.s390x",
"product": {
"name": "python36-pysaml2-7.0.1-1.2.s390x",
"product_id": "python36-pysaml2-7.0.1-1.2.s390x"
}
},
{
"category": "product_version",
"name": "python38-pysaml2-7.0.1-1.2.s390x",
"product": {
"name": "python38-pysaml2-7.0.1-1.2.s390x",
"product_id": "python38-pysaml2-7.0.1-1.2.s390x"
}
},
{
"category": "product_version",
"name": "python39-pysaml2-7.0.1-1.2.s390x",
"product": {
"name": "python39-pysaml2-7.0.1-1.2.s390x",
"product_id": "python39-pysaml2-7.0.1-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python36-pysaml2-7.0.1-1.2.x86_64",
"product": {
"name": "python36-pysaml2-7.0.1-1.2.x86_64",
"product_id": "python36-pysaml2-7.0.1-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "python38-pysaml2-7.0.1-1.2.x86_64",
"product": {
"name": "python38-pysaml2-7.0.1-1.2.x86_64",
"product_id": "python38-pysaml2-7.0.1-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "python39-pysaml2-7.0.1-1.2.x86_64",
"product": {
"name": "python39-pysaml2-7.0.1-1.2.x86_64",
"product_id": "python39-pysaml2-7.0.1-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-pysaml2-7.0.1-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64"
},
"product_reference": "python36-pysaml2-7.0.1-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-pysaml2-7.0.1-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le"
},
"product_reference": "python36-pysaml2-7.0.1-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-pysaml2-7.0.1-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x"
},
"product_reference": "python36-pysaml2-7.0.1-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-pysaml2-7.0.1-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64"
},
"product_reference": "python36-pysaml2-7.0.1-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-pysaml2-7.0.1-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64"
},
"product_reference": "python38-pysaml2-7.0.1-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-pysaml2-7.0.1-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le"
},
"product_reference": "python38-pysaml2-7.0.1-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-pysaml2-7.0.1-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x"
},
"product_reference": "python38-pysaml2-7.0.1-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-pysaml2-7.0.1-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64"
},
"product_reference": "python38-pysaml2-7.0.1-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-pysaml2-7.0.1-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64"
},
"product_reference": "python39-pysaml2-7.0.1-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-pysaml2-7.0.1-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le"
},
"product_reference": "python39-pysaml2-7.0.1-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-pysaml2-7.0.1-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x"
},
"product_reference": "python39-pysaml2-7.0.1-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-pysaml2-7.0.1-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
},
"product_reference": "python39-pysaml2-7.0.1-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5390",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-5390"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 before 5.0.0 does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping (XSW). The signature information and the node/object that is signed can be in different places and thus the signature verification will succeed, but the wrong data will be used. This specifically affects the verification of assertion that have been signed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-5390",
"url": "https://www.suse.com/security/cve/CVE-2020-5390"
},
{
"category": "external",
"summary": "SUSE Bug 1160851 for CVE-2020-5390",
"url": "https://bugzilla.suse.com/1160851"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-5390"
},
{
"cve": "CVE-2021-21238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21238"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping because it did not validate the SAML document against an XML schema. This allowed invalid XML documents to be processed and such a document can trick pysaml2 with a wrapped signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21238",
"url": "https://www.suse.com/security/cve/CVE-2021-21238"
},
{
"category": "external",
"summary": "SUSE Bug 1181277 for CVE-2021-21238",
"url": "https://bugzilla.suse.com/1181277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-21238"
},
{
"cve": "CVE-2021-21239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21239"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21239",
"url": "https://www.suse.com/security/cve/CVE-2021-21239"
},
{
"category": "external",
"summary": "SUSE Bug 1181278 for CVE-2021-21239",
"url": "https://bugzilla.suse.com/1181278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python36-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python38-pysaml2-7.0.1-1.2.x86_64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.aarch64",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.ppc64le",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.s390x",
"openSUSE Tumbleweed:python39-pysaml2-7.0.1-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-21239"
}
]
}
OPENSUSE-SU-2024:14156-1
Vulnerability from csaf_opensuse - Published: 2024-07-12 00:00 - Updated: 2024-07-12 00:00Summary
python310-pysaml2-7.4.2-1.2 on GA media
Notes
Title of the patch
python310-pysaml2-7.4.2-1.2 on GA media
Description of the patch
These are all security issues fixed in the python310-pysaml2-7.4.2-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-14156
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python310-pysaml2-7.4.2-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python310-pysaml2-7.4.2-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-14156",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14156-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-5390 page",
"url": "https://www.suse.com/security/cve/CVE-2020-5390/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21238 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21239 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21239/"
}
],
"title": "python310-pysaml2-7.4.2-1.2 on GA media",
"tracking": {
"current_release_date": "2024-07-12T00:00:00Z",
"generator": {
"date": "2024-07-12T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:14156-1",
"initial_release_date": "2024-07-12T00:00:00Z",
"revision_history": [
{
"date": "2024-07-12T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python310-pysaml2-7.4.2-1.2.aarch64",
"product": {
"name": "python310-pysaml2-7.4.2-1.2.aarch64",
"product_id": "python310-pysaml2-7.4.2-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "python311-pysaml2-7.4.2-1.2.aarch64",
"product": {
"name": "python311-pysaml2-7.4.2-1.2.aarch64",
"product_id": "python311-pysaml2-7.4.2-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "python312-pysaml2-7.4.2-1.2.aarch64",
"product": {
"name": "python312-pysaml2-7.4.2-1.2.aarch64",
"product_id": "python312-pysaml2-7.4.2-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python310-pysaml2-7.4.2-1.2.ppc64le",
"product": {
"name": "python310-pysaml2-7.4.2-1.2.ppc64le",
"product_id": "python310-pysaml2-7.4.2-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-pysaml2-7.4.2-1.2.ppc64le",
"product": {
"name": "python311-pysaml2-7.4.2-1.2.ppc64le",
"product_id": "python311-pysaml2-7.4.2-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python312-pysaml2-7.4.2-1.2.ppc64le",
"product": {
"name": "python312-pysaml2-7.4.2-1.2.ppc64le",
"product_id": "python312-pysaml2-7.4.2-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python310-pysaml2-7.4.2-1.2.s390x",
"product": {
"name": "python310-pysaml2-7.4.2-1.2.s390x",
"product_id": "python310-pysaml2-7.4.2-1.2.s390x"
}
},
{
"category": "product_version",
"name": "python311-pysaml2-7.4.2-1.2.s390x",
"product": {
"name": "python311-pysaml2-7.4.2-1.2.s390x",
"product_id": "python311-pysaml2-7.4.2-1.2.s390x"
}
},
{
"category": "product_version",
"name": "python312-pysaml2-7.4.2-1.2.s390x",
"product": {
"name": "python312-pysaml2-7.4.2-1.2.s390x",
"product_id": "python312-pysaml2-7.4.2-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python310-pysaml2-7.4.2-1.2.x86_64",
"product": {
"name": "python310-pysaml2-7.4.2-1.2.x86_64",
"product_id": "python310-pysaml2-7.4.2-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "python311-pysaml2-7.4.2-1.2.x86_64",
"product": {
"name": "python311-pysaml2-7.4.2-1.2.x86_64",
"product_id": "python311-pysaml2-7.4.2-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "python312-pysaml2-7.4.2-1.2.x86_64",
"product": {
"name": "python312-pysaml2-7.4.2-1.2.x86_64",
"product_id": "python312-pysaml2-7.4.2-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-pysaml2-7.4.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64"
},
"product_reference": "python310-pysaml2-7.4.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-pysaml2-7.4.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le"
},
"product_reference": "python310-pysaml2-7.4.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-pysaml2-7.4.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x"
},
"product_reference": "python310-pysaml2-7.4.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-pysaml2-7.4.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64"
},
"product_reference": "python310-pysaml2-7.4.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-pysaml2-7.4.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64"
},
"product_reference": "python311-pysaml2-7.4.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-pysaml2-7.4.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le"
},
"product_reference": "python311-pysaml2-7.4.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-pysaml2-7.4.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x"
},
"product_reference": "python311-pysaml2-7.4.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-pysaml2-7.4.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64"
},
"product_reference": "python311-pysaml2-7.4.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-pysaml2-7.4.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64"
},
"product_reference": "python312-pysaml2-7.4.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-pysaml2-7.4.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le"
},
"product_reference": "python312-pysaml2-7.4.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-pysaml2-7.4.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x"
},
"product_reference": "python312-pysaml2-7.4.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-pysaml2-7.4.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
},
"product_reference": "python312-pysaml2-7.4.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5390",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-5390"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 before 5.0.0 does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping (XSW). The signature information and the node/object that is signed can be in different places and thus the signature verification will succeed, but the wrong data will be used. This specifically affects the verification of assertion that have been signed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-5390",
"url": "https://www.suse.com/security/cve/CVE-2020-5390"
},
{
"category": "external",
"summary": "SUSE Bug 1160851 for CVE-2020-5390",
"url": "https://bugzilla.suse.com/1160851"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-12T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-5390"
},
{
"cve": "CVE-2021-21238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21238"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping because it did not validate the SAML document against an XML schema. This allowed invalid XML documents to be processed and such a document can trick pysaml2 with a wrapped signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21238",
"url": "https://www.suse.com/security/cve/CVE-2021-21238"
},
{
"category": "external",
"summary": "SUSE Bug 1181277 for CVE-2021-21238",
"url": "https://bugzilla.suse.com/1181277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-12T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-21238"
},
{
"cve": "CVE-2021-21239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21239"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21239",
"url": "https://www.suse.com/security/cve/CVE-2021-21239"
},
{
"category": "external",
"summary": "SUSE Bug 1181278 for CVE-2021-21239",
"url": "https://bugzilla.suse.com/1181278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python310-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python311-pysaml2-7.4.2-1.2.x86_64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.aarch64",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.ppc64le",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.s390x",
"openSUSE Tumbleweed:python312-pysaml2-7.4.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-12T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-21239"
}
]
}
SUSE-SU-2021:2554-1
Vulnerability from csaf_suse - Published: 2021-07-28 15:27 - Updated: 2021-07-28 15:27Summary
Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema
Notes
Title of the patch
Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema
Description of the patch
This update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema fixes the following issues:
Security fixes included on this update:
cassandra-kit:
- CVE-2020-17516: Internode encryption enforcement vulnerability
cassandra:
- CVE-2020-17516: Internode encryption enforcement vulnerability
- CVE-2017-5929 logback: Fixed a serialization vulnerability in SocketServer and ServerSocketReceiver
crowbar-core:
CVE-2020-26247: Potentially XXE or SSRF attacks by parsed Nokogiri::XML::Schema
grafana:
- CVE-2021-27358: Unauthenticated remote attackers to trigger a Denial of Service via a remote API call
kibana:
- CVE-2017-11481: Fixed an XSS via URL fields
- CVE-2017-11499: Fixed a constant hashtable seeds vulnerability
python-Django:
- CVE-2021-28658: Potential directory-traversal via uploaded files
- CVE-2021-31542: Potential directory-traversal via uploaded files
- CVE-2021-33203: Potential directory traversal via admindocs
- CVE-2021-33571: Possible indeterminate SSRF, RFI, and LFI attacks since validators accepted leading zeros in IPv4 addresses
- CVE-2021-23336: Fixed web cache poisoning via django.utils.http.limited_parse_qsl
python-eventlet:
- CVE-2021-21419: Improper handling of highly compressed data and memory allocation with excessive size value
python-pysaml2:
- CVE-2021-21238: Fixed an improper verification of cryptographic signatures for signed SAML documents
- CVE-2021-21239: Fixed an improper verification of cryptographic signatures when using CryptoBackendXmlSec1()_
python-py:
- CVE-2020-29651: Regular expression denial of service in svnwc.py
rubygem-activerecord-session_store:
- CVE-2019-25025: Fixed a hijack sessions by using timing attacks targeting the session id
CVE-2019-16782
Non-security fixes included on this update:
Changes in ardana-cobbler:
- Update to version 8.0+git.1614096566.e8c2b27:
* Change install_recommended to true (bsc#1181828)
Changes in cassandra:
- update to 3.11.10 (bsc#1181689, CVE-2020-17516)
* Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)
* Reduce amount of allocations during batch statement execution (CASSANDRA-16201)
* Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)
* Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)
* Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)
* SASI's `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)
* Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)
* Improve empty hint file handling during startup (CASSANDRA-16162)
* Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)
* Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)
* Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)
* Synchronize transaction logs for JBOD (CASSANDRA-16225)
* Fix the counting of cells per partition (CASSANDRA-16259)
* Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)
* Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)
* Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)
* Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)
* Remove the SEPExecutor blocking behavior (CASSANDRA-16186)
* Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)
* Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)
* Wait for schema agreement when bootstrapping (CASSANDRA-15158)
* Fix the histogram merge of the table metrics (CASSANDRA-16259)
* Synchronize Keyspace instance store/clear (CASSANDRA-16210)
* Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)
* Fix memory leak in CompressedChunkReader (CASSANDRA-15880)
* Don't attempt value skipping with mixed version cluster (CASSANDRA-15833)
* Avoid failing compactions with very large partitions (CASSANDRA-15164)
* Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)
* Fix OOM when terminating repair session (CASSANDRA-15902)
* Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)
* Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)
* Handle unexpected columns due to schema races (CASSANDRA-15899)
* Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)
* Package tools/bin scripts as executable (CASSANDRA-16151)
* Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)
* Correctly interpret SASI's `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)
* Fix short read protection for GROUP BY queries (CASSANDRA-15459)
* Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)
Merged from 3.0:
* Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)
* Fix gossip shutdown order (CASSANDRA-15816)
* Remove broken 'defrag-on-read' optimization (CASSANDRA-15432)
* Check for endpoint collision with hibernating nodes (CASSANDRA-14599)
* Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)
* stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)
* Forbid altering UDTs used in partition keys (CASSANDRA-15933)
* Fix empty/null json string representation (CASSANDRA-15896)
* 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)
* Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)
Merged from 2.2:
* Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)
* Only allow strings to be passed to JMX authentication (CASSANDRA-16077)
* Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)
* Upgrade Jackson to 2.9.10 (CASSANDRA-15867)
* Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)
* Allow sstableloader to use SSL on the native port (CASSANDRA-14904)
* Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)
* Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)
* Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)
* Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)
* Add token to tombstone warning and error messages (CASSANDRA-15890)
* Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)
* Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)
* Fix replica-side filtering returning stale data with CL > ONE (CASSANDRA-8272, CASSANDRA-8273)
* Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)
* Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)
* EmptyType doesn't override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)
* Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)
* Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)
* liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)
* Fix Debian init start/stop (CASSANDRA-15770)
* Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)
* Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)
* Allow selecting static column only when querying static index (CASSANDRA-14242)
* cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)
* Don't skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)
* Memtable memory allocations may deadlock (CASSANDRA-15367)
* Run evictFromMembership in GossipStage (CASSANDRA-15592)
* Fix nomenclature of allow and deny lists (CASSANDRA-15862)
* Remove generated files from source artifact (CASSANDRA-15849)
* Remove duplicated tools binaries from tarballs (CASSANDRA-15768)
* Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)
* Disable JMX rebinding (CASSANDRA-15653)
* Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)
* Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)
* Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)
* Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)
* Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)
* Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)
* Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)
* Fix SELECT JSON formatting for the 'duration' type (CASSANDRA-15075)
* Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)
* Update nodetool help stop output (CASSANDRA-15401)
* Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)
* Include updates to static column in mutation size calculations (CASSANDRA-15293)
* Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)
* GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)
* Fix sstabledump's position key value when partitions have multiple rows (CASSANDRA-14721)
* Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)
* Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11
(CASSANDRA-15441)
* Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)
* Fix various data directory prefix matching issues (CASSANDRA-13974)
* Minimize clustering values in metadata collector (CASSANDRA-15400)
* Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)
* validate value sizes in LegacyLayout (CASSANDRA-15373)
* Ensure that tracing doesn't break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)
* Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)
* Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)
* Fix race condition when setting bootstrap flags (CASSANDRA-14878)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SELECT JSON output for empty blobs (CASSANDRA-15435)
* In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)
* In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)
* Make sure user defined compaction transactions are always closed (CASSANDRA-15123)
* Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)
* Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)
* Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)
* Add ability to cap max negotiable protocol version (CASSANDRA-15193)
* Gossip tokens on startup if available (CASSANDRA-15335)
* Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)
* Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)
* Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)
* Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)
* Filter sstables earlier when running cleanup (CASSANDRA-15100)
* Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)
* Avoid updating unchanged gossip states (CASSANDRA-15097)
* Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)
* Prevent client requests from blocking on executor task queue (CASSANDRA-15013)
* Toughen up column drop/recreate type validations (CASSANDRA-15204)
* LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)
* Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)
* Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)
* Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)
* Handle paging states serialized with a different version than the session's (CASSANDRA-15176)
* Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)
* Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)
* Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)
* Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)
* Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)
* Fix mixed mode partition range scans with limit (CASSANDRA-15072)
* cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)
* Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)
* Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)
* Improve `nodetool status -r` speed (CASSANDRA-14847)
* Improve merkle tree size and time on heap (CASSANDRA-14096)
* Add missing commands to nodetool_completion (CASSANDRA-14916)
* Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)
* Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)
* Handle exceptions during authentication/authorization (CASSANDRA-15041)
* Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)
* Fix index summary redistribution cancellation (CASSANDRA-15045)
* Fixing invalid CQL in security documentation (CASSANDRA-15020)
* Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)
* Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)
* Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)
* Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser
* Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)
* If SizeEstimatesRecorder misses a 'onDropTable' notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)
* Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)
* Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)
* Fix cassandra-stress write hang with default options (CASSANDRA-14616)
* Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)
* Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)
* Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)
* RangeTombstoneList doesn't properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)
* Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)
* Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)
* Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)
* Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)
* Move TWCS message 'No compaction necessary for bucket size' to Trace level (CASSANDRA-14884)
* Sstable min/max metadata can cause data loss (CASSANDRA-14861)
* Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)
* Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)
* Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)
* Reverse order reads can return incomplete results (CASSANDRA-14803)
* Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)
* Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)
* DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)
* Fix corrupted collection deletions for dropped columns in 3.0 2.{1,2} messages (CASSANDRA-14568)
* Fix corrupted static collection deletions in 3.0 2.{1,2} messages (CASSANDRA-14568)
* Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)
* Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)
* Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)
* Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)
* sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)
* Fix reading columns with non-UTF names from schema (CASSANDRA-14468)
* Don't enable client transports when bootstrap is pending (CASSANDRA-14525)
* MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)
* Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)
* Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)
* Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)
* Validate supported column type with SASI analyzer (CASSANDRA-13669)
* Remove BTree.Builder Recycler to reduce memory usage (CASSANDRA-13929)
* Reduce nodetool GC thread count (CASSANDRA-14475)
* Fix New SASI view creation during Index Redistribution (CASSANDRA-14055)
* Remove string formatting lines from BufferPool hot path (CASSANDRA-14416)
* Update metrics to 3.1.5 (CASSANDRA-12924)
* Detect OpenJDK jvm type and architecture (CASSANDRA-12793)
* Don't use guava collections in the non-system keyspace jmx attributes (CASSANDRA-12271)
* Allow existing nodes to use all peers in shadow round (CASSANDRA-13851)
* Fix cqlsh to read connection.ssl cqlshrc option again (CASSANDRA-14299)
* Downgrade log level to trace for CommitLogSegmentManager (CASSANDRA-14370)
* CQL fromJson(null) throws NullPointerException (CASSANDRA-13891)
* Serialize empty buffer as empty string for json output format (CASSANDRA-14245)
* Allow logging implementation to be interchanged for embedded testing (CASSANDRA-13396)
* SASI tokenizer for simple delimiter based entries (CASSANDRA-14247)
* Fix Loss of digits when doing CAST from varint/bigint to decimal (CASSANDRA-14170)
* RateBasedBackPressure unnecessarily invokes a lock on the Guava RateLimiter (CASSANDRA-14163)
* Fix wildcard GROUP BY queries (CASSANDRA-14209)
* Fix corrupted static collection deletions in 3.0 -> 2.{1,2} messages (CASSANDRA-14568)
* Fix potential IndexOutOfBoundsException with counters (CASSANDRA-14167)
* Always close RT markers returned by ReadCommand#executeLocally() (CASSANDRA-14515)
* Reverse order queries with range tombstones can cause data loss (CASSANDRA-14513)
* Fix regression of lagging commitlog flush log message (CASSANDRA-14451)
* Add Missing dependencies in pom-all (CASSANDRA-14422)
* Cleanup StartupClusterConnectivityChecker and PING Verb (CASSANDRA-14447)
* Fix deprecated repair error notifications from 3.x clusters to legacy JMX clients (CASSANDRA-13121)
* Cassandra not starting when using enhanced startup scripts in windows (CASSANDRA-14418)
* Fix progress stats and units in compactionstats (CASSANDRA-12244)
* Better handle missing partition columns in system_schema.columns (CASSANDRA-14379)
* Delay hints store excise by write timeout to avoid race with decommission (CASSANDRA-13740)
* Deprecate background repair and probablistic read_repair_chance table options
(CASSANDRA-13910)
* Add missed CQL keywords to documentation (CASSANDRA-14359)
* Fix unbounded validation compactions on repair / revert CASSANDRA-13797 (CASSANDRA-14332)
* Avoid deadlock when running nodetool refresh before node is fully up (CASSANDRA-14310)
* Handle all exceptions when opening sstables (CASSANDRA-14202)
* Handle incompletely written hint descriptors during startup (CASSANDRA-14080)
* Handle repeat open bound from SRP in read repair (CASSANDRA-14330)
* Respect max hint window when hinting for LWT (CASSANDRA-14215)
* Adding missing WriteType enum values to v3, v4, and v5 spec (CASSANDRA-13697)
* Don't regenerate bloomfilter and summaries on startup (CASSANDRA-11163)
* Fix NPE when performing comparison against a null frozen in LWT (CASSANDRA-14087)
* Log when SSTables are deleted (CASSANDRA-14302)
* Fix batch commitlog sync regression (CASSANDRA-14292)
* Write to pending endpoint when view replica is also base replica (CASSANDRA-14251)
* Chain commit log marker potential performance regression in batch commit mode (CASSANDRA-14194)
* Fully utilise specified compaction threads (CASSANDRA-14210)
* Pre-create deletion log records to finish compactions quicker (CASSANDRA-12763)
* Fix bug that prevented compaction of SSTables after full repairs (CASSANDRA-14423)
* Incorrect counting of pending messages in OutboundTcpConnection (CASSANDRA-11551)
* Fix compaction failure caused by reading un-flushed data (CASSANDRA-12743)
* Use Bounds instead of Range for sstables in anticompaction (CASSANDRA-14411)
* Fix JSON queries with IN restrictions and ORDER BY clause (CASSANDRA-14286)
* Backport circleci yaml (CASSANDRA-14240)
* Check checksum before decompressing data (CASSANDRA-14284)
* CVE-2017-5929 Security vulnerability in Logback warning in NEWS.txt (CASSANDRA-14183)
- Use %license macro
Changes in cassandra-kit:
- Update to Cassandra 3.11.10 (bsc#1181689, CVE-2020-17516)
Changes in crowbar-core:
- Update to version 5.0+git.1622489449.a8e60e238:
* avoid v4.1.5 of delayed_job_active_record (noref)
* add CVE-2020-26247 to travis ignore list (bsc#1180507)
Changes in crowbar-openstack:
- Update to version 5.0+git.1616001417.67fd9c2a1:
* monasca: restart Kibana on update (bsc#1044849)
- Update to version 5.0+git.1615542070.7841c34b7:
* monasca: fix monasca-server reinstall state check (SOC-11471)
Changes in documentation-suse-openstack-cloud:
- Update to version 8.20210512:
* Moved Monasca deployment to immediately after keystone (SOC-11525) (#1312)
- Update to version 8.20210511:
* Update the correct SLES version to suse-12.3 (SOC-11521) (#1321)
* Renamed the repo name from SLE12-SP3-HA to SLE-HA12-SP3 (SOC-11523) (#1320)
- Update to version 8.20210511:
* Add bm-power-status playbook to add sles compute section (#1317)
- Update to version 8.20210507:
* Add instructions for checking MySQL cert expiry (SOC-11422) (#1311)
- Update to version 8.20210304:
* Add nova and heat db purge cron jobs to maintenance section (SOC-9876) (#1307)
Changes in grafana:
- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)
* Prevent unauthenticated remote attackers from causing a DoS through the
snapshots API.
Changes in kibana:
- Ensure /etc/sysconfig/kibana is present
- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14,
ESA-2017-16)
* [4.6] ignore forked code for babel transpile build phase (#13483)
* Allow more than match queries in custom filters (#8614) (#10857)
* [state] don't make extra $location.replace() calls (#9954)
* [optimizer] move to querystring-browser package for up-to-date api
* [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls
* server: refactor log_interceptor to be more DRY (#9617)
* server: downgrade ECANCELED logs to debug (#9616)
* server: do not treat logged warnings as errors (#8746) (#9610)
* [server/logger] downgrade EPIPE errors to debug level (#9023)
* Add basepath when redirecting from a trailling slash (#9035)
* [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)
* [server/shortUrl] validate urls before shortening them
- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)
* This fixes an XSS vulnerability in URL fields
- Remove %dir declaration from /opt/kibana/optimize to ensure
no files owned by root end up in there
- Exclude /opt/kibana/optimize from %fdupes
- Restart service on upgrade
- Do not copy LICENSE.txt and README.txt to /opt/kibana
- Fix rpmlint warnings/errors
- Switch to explicit patch application
- Fix source URL
- Fix logic for systemd/systemv detection
Changes in openstack-heat-templates:
- Update to version 0.0.0+git.1623056900.7917e18:
* Fix zuul config for heat-templates-check
- Update to version 0.0.0+git.1621405516.71a0f7a:
* Remove testr
Changes in openstack-monasca-installer:
- Add 0001-fix-influxdb-stop-task.patch (SOC-11470)
- Add 0001-fix-cassandra-deployment.patch (SOC-11470)
Changes in openstack-nova:
- Update to version nova-16.1.9.dev92:
* Lowercase ironic driver hash ring and ignore case in cache
* Include only required fields in ironic node cache
* Add resource\_class to fields in ironic node cache
- Update to version nova-16.1.9.dev86:
* [stable-only] Move grenade jobs to experimental
* Update resources once in update\_available\_resource
* rt: Make resource tracker always invoking get\_inventory()
- Update to version nova-16.1.9.dev81:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
- Update to version nova-16.1.9.dev80:
* [placement] Add status and links fields to version document at /
Changes in openstack-nova:
- Update to version nova-16.1.9.dev92:
* Lowercase ironic driver hash ring and ignore case in cache
* Include only required fields in ironic node cache
* Add resource\_class to fields in ironic node cache
- Update to version nova-16.1.9.dev86:
* [stable-only] Move grenade jobs to experimental
* Update resources once in update\_available\_resource
* rt: Make resource tracker always invoking get\_inventory()
- Update to version nova-16.1.9.dev81:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
- Update to version nova-16.1.9.dev80:
* [placement] Add status and links fields to version document at /
Changes in python-Django:
- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)
* Fixed potential path-traversal via admindocs' TemplateDetailView.
- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)
* Prevented leading zeros in IPv4 addresses.
- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)
* Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file
uploads.
- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)
* Fixed potential directory-traversal via uploaded files
- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)
* Fixed web cache poisoning via django.utils.http.limited_parse_qsl()
Changes in python-eventlet:
- Add 0001-websocket-fd-leak-when-client-did-not-close-connecti.patch
- Add 0002-websocket-Limit-maximum-uncompressed-frame-length-to.patch (bsc#1185836 CVE-2021-21419)
* websocket: Limit maximum uncompressed frame length to 8MiB
Changes in python-py:
- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)
* svnwc: fix regular expression vulnerable to DoS in blame
functionality
Changes in python-pysaml2:
- Add %dir declaration for %{_licensedir}
- Fix CVE-2021-21238, bsc#1181277 with
0004-Strengthen-XSW-tests.patch ,
0005-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,
0006-Add-xsd-schemas.patch ,
0007-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .
This adds a dependency on python-xmlschema, which depends on
python-elementpath and build depends python-pathlib2, which depends on
python-scandir, thus all these need to be added for this to work.
The used python-xmlschema needs to support the sandbox argument
which was added in 1.2.0 and refined in 1.2.1, but that version
doesn't support python2, so a patched version that does both is
needed.
0009-Make-previous-commits-python2-compatible.patch to
not add a dependency on reportlib_resources and make other
changes python2 compatible.
- Fix CVE-2021-21239, bsc#1181278 with
0008-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch
Changes in venv-openstack-keystone:
- Add python-xmlschema and python-elementpath for new python-pysaml2 version.
Changes in python-xmlschema:
- Add missed BuildRequires on pathlib2
- Add 3 patches to backport sandbox argument, which is needed by a security fix
in python-pysaml2 and one patch to make backport python2 compatible.
- Upstream url changed
- Add rpmlintrc to make it work on Leap 42.3
- Update to 1.0.18:
* Fix for *ModelVisitor.iter_unordered_content()*
* Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode
* Fixed validation tests with all converters
* Added UnorderedConverter to validation tests
- Update to 1.0.17:
* Enhancement of validation-only speed (~15%)
* Added *is_valid()* and *iter_errors()* to module API
- Update to 1.0.16:
* Improved XMLResource class for working with compressed files
* Fix for validation with XSD wildcards and 'lax' process content
* Fix ambiguous items validation for xs:choice and xs:sequence models
- Handle UnicodeDecodeErrors during build process
- Update to 1.0.15:
* Improved XPath 2.0 bindings
* Added logging for schema initialization and building (handled with argument loglevel)
* Update encoding of collapsed contents with a new model based reordering method
* Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)
* Fixed half of failed W3C instance tests (remain 255 over 15344 tests)
- Initial commit, needed by pytest 5.1.2
Changes in python-elementpath:
- Update to 1.3.1:
* Improved schema proxy
* Improved XSD type matching using paths
* Cached parent path for XPathContext (only Python 3)
* Improve typed selection with TypedAttribute and TypedElement named-tuples
* Add iter_results to XPathContext
* Remove XMLSchemaProxy from package
* Fix descendant shortcut operator '//'
* Fix text() function
* Fix typed select of '(name)' token
* Fix 24-hour time for DateTime
- Skip test_hashing to fix 32bit builds
- Initial commit needed by python-xmlschema
Changes in python-six:
- Update in SLE-12 (bsc#1176784, jsc#ECO-3105, jsc#PM-2352)
- Fix testsuite on SLE-12
+ Add python to BuildRequires for suse_version less 1500
- Fix dbm deps as the MU for provides: python-dbm was not released
on sle12 yet
- Add requirement on pytest > 4.0 to see the pytest module works
with this MU
- Do not cause buildcycle with previous change but rather
install the egg-info prepared metadata from the tarball
- use setuptools for building to support pip 10.x (bsc#1166139)
- update to 1.14.0
* Add `six.assertNotRegex`
* `six.moves._dummy_thread` now points to the `_thread` module on
Python 3.9+. Python 3.7 and later requires threading and deprecated the
`_dummy_thread` module
* Remove support for Python 2.6 and Python 3.2
* `six.wraps` now ignores missing attributes
- Pull in dbm/gdbm module from python for testing
- update to 0.13.0:
- Issue #298, pull request #299: Add `six.moves.dbm_ndbm`.
- Issue #155: Add `six.moves.collections_abc`, which aliases the `collections`
module on Python 2-3.2 and the `collections.abc` on Python 3.3 and greater.
- Pull request #304: Re-add distutils fallback in `setup.py`.
- Pull request #305: On Python 3.7, `with_metaclass` supports classes using PEP
- Simplify the pytest call
- Fix pytest call
- Fixdocumentation package generating
- Change %pretrans back to %pre to fix bootstrap issue
boo#1123064 bsc#1143893
- Require just base python module, even full python is too much
and it is not required here
- Update to 0.12.0:
* `six.add_metaclass` now preserves `__qualname__` from the
original class.
* Add `six.ensure_binary`, `six.ensure_text`, and
`six.ensure_str`.
- Because of cyclical dependencies between six and Sphinx, we
need to to do multibuild.
- Include in SLE-12 (FATE#326838, bsc#1113302)
- remove egg-info directory in %pretrans
- fix egg-info directory pattern
- match any version of egg-info for a certain python version
- Break the cycilical dependency on python-setuptools.
- Remove argparse dependency
- build python3 subpackage (FATE#324435, bsc#1073879)
- remove egg-info directory before installation if it exists,
because setuptools produce directory and six switched to distutils
that produce a file
(and because rpm can't handle that by itself)
fixes bsc#1057496
- Fix Source url
- README->README.rst, add CHANGES
- update to version 1.11.0:
* Pull request #178: `with_metaclass` now properly proxies
`__prepare__` to the underlying metaclass.
* Pull request #191: Allow `with_metaclass` to work with metaclasses
implemented in C.
* Pull request #203: Add parse_http_list and parse_keqv_list to
moved urllib.request.
* Pull request #172 and issue #171: Add unquote_to_bytes to moved
urllib.parse.
* Pull request #167: Add `six.moves.getoutput`.
* Pull request #80: Add `six.moves.urllib_parse.splitvalue`.
* Pull request #75: Add `six.moves.email_mime_image`.
* Pull request #72: Avoid creating reference cycles through
tracebacks in `reraise`.
- Submit 1.9.0 to SLE-12 (fate#319030, fate#318838, bsc#940812)
- sanitize release line in specfile
Changes in rubygem-activerecord-session_store.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:
- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)
* This requires CVE-2019-16782.patch to be included in rubygem-actionpack-4_2
to work correctly.
Changes in venv-openstack-keystone:
- Add python-xmlschema and python-elementpath for new python-pysaml2 version.
- Add python-defusedxml (bsc#1019074)
- Inherit version number of venv from main component (SCRD-8523)
Patchnames
HPE-Helion-OpenStack-8-2021-2554,SUSE-2021-2554,SUSE-OpenStack-Cloud-8-2021-2554,SUSE-OpenStack-Cloud-Crowbar-8-2021-2554
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema ",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema fixes the following issues:\n\nSecurity fixes included on this update:\n\ncassandra-kit:\n- CVE-2020-17516: Internode encryption enforcement vulnerability\n\ncassandra:\n- CVE-2020-17516: Internode encryption enforcement vulnerability\n- CVE-2017-5929 logback: Fixed a serialization vulnerability in SocketServer and ServerSocketReceiver\n\ncrowbar-core:\nCVE-2020-26247: Potentially XXE or SSRF attacks by parsed Nokogiri::XML::Schema\n\ngrafana:\n- CVE-2021-27358: Unauthenticated remote attackers to trigger a Denial of Service via a remote API call\n\nkibana:\n- CVE-2017-11481: Fixed an XSS via URL fields\n- CVE-2017-11499: Fixed a constant hashtable seeds vulnerability\n\npython-Django:\n- CVE-2021-28658: Potential directory-traversal via uploaded files\n- CVE-2021-31542: Potential directory-traversal via uploaded files\n- CVE-2021-33203: Potential directory traversal via admindocs\n- CVE-2021-33571: Possible indeterminate SSRF, RFI, and LFI attacks since validators accepted leading zeros in IPv4 addresses\n- CVE-2021-23336: Fixed web cache poisoning via django.utils.http.limited_parse_qsl\n\npython-eventlet:\n- CVE-2021-21419: Improper handling of highly compressed data and memory allocation with excessive size value\n\npython-pysaml2:\n- CVE-2021-21238: Fixed an improper verification of cryptographic signatures for signed SAML documents\n- CVE-2021-21239: Fixed an improper verification of cryptographic signatures when using CryptoBackendXmlSec1()_\n\npython-py:\n- CVE-2020-29651: Regular expression denial of service in svnwc.py\n\nrubygem-activerecord-session_store:\n- CVE-2019-25025: Fixed a hijack sessions by using timing attacks targeting the session id\nCVE-2019-16782\n\nNon-security fixes included on this update:\n\nChanges in ardana-cobbler:\n- Update to version 8.0+git.1614096566.e8c2b27:\n * Change install_recommended to true (bsc#1181828)\n\nChanges in cassandra:\n- update to 3.11.10 (bsc#1181689, CVE-2020-17516)\n * Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)\n * Reduce amount of allocations during batch statement execution (CASSANDRA-16201)\n * Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)\n * Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)\n * Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)\n * SASI\u0027s `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)\n * Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)\n * Improve empty hint file handling during startup (CASSANDRA-16162)\n * Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)\n * Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)\n * Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)\n * Synchronize transaction logs for JBOD (CASSANDRA-16225)\n * Fix the counting of cells per partition (CASSANDRA-16259)\n * Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)\n * Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)\n * Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)\n * Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)\n * Remove the SEPExecutor blocking behavior (CASSANDRA-16186)\n * Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)\n * Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)\n * Wait for schema agreement when bootstrapping (CASSANDRA-15158)\n * Fix the histogram merge of the table metrics (CASSANDRA-16259)\n * Synchronize Keyspace instance store/clear (CASSANDRA-16210)\n * Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)\n * Fix memory leak in CompressedChunkReader (CASSANDRA-15880)\n * Don\u0027t attempt value skipping with mixed version cluster (CASSANDRA-15833)\n * Avoid failing compactions with very large partitions (CASSANDRA-15164)\n * Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)\n * Fix OOM when terminating repair session (CASSANDRA-15902)\n * Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)\n * Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)\n * Handle unexpected columns due to schema races (CASSANDRA-15899)\n * Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)\n * Package tools/bin scripts as executable (CASSANDRA-16151)\n * Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)\n * Correctly interpret SASI\u0027s `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)\n * Fix short read protection for GROUP BY queries (CASSANDRA-15459)\n * Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)\nMerged from 3.0:\n * Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)\n * Fix gossip shutdown order (CASSANDRA-15816)\n * Remove broken \u0027defrag-on-read\u0027 optimization (CASSANDRA-15432)\n * Check for endpoint collision with hibernating nodes (CASSANDRA-14599)\n * Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)\n * stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)\n * Forbid altering UDTs used in partition keys (CASSANDRA-15933)\n * Fix empty/null json string representation (CASSANDRA-15896)\n * 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)\n * Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)\nMerged from 2.2:\n * Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)\n * Only allow strings to be passed to JMX authentication (CASSANDRA-16077)\n * Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)\n * Upgrade Jackson to 2.9.10 (CASSANDRA-15867)\n * Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)\n * Allow sstableloader to use SSL on the native port (CASSANDRA-14904)\n * Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)\n * Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)\n * Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)\n * Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)\n * Add token to tombstone warning and error messages (CASSANDRA-15890)\n * Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)\n * Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)\n * Fix replica-side filtering returning stale data with CL \u003e ONE (CASSANDRA-8272, CASSANDRA-8273)\n * Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)\n * Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)\n * EmptyType doesn\u0027t override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)\n * Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)\n * Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)\n * liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)\n * Fix Debian init start/stop (CASSANDRA-15770)\n * Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)\n * Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)\n * Allow selecting static column only when querying static index (CASSANDRA-14242)\n * cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)\n * Don\u0027t skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)\n * Memtable memory allocations may deadlock (CASSANDRA-15367)\n * Run evictFromMembership in GossipStage (CASSANDRA-15592)\n * Fix nomenclature of allow and deny lists (CASSANDRA-15862)\n * Remove generated files from source artifact (CASSANDRA-15849)\n * Remove duplicated tools binaries from tarballs (CASSANDRA-15768)\n * Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)\n * Disable JMX rebinding (CASSANDRA-15653)\n * Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)\n * Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)\n * Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)\n * Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)\n * Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)\n * Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)\n * Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)\n * Fix SELECT JSON formatting for the \u0027duration\u0027 type (CASSANDRA-15075)\n * Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)\n * Update nodetool help stop output (CASSANDRA-15401)\n * Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)\n * Include updates to static column in mutation size calculations (CASSANDRA-15293)\n * Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)\n * GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)\n * Fix sstabledump\u0027s position key value when partitions have multiple rows (CASSANDRA-14721)\n * Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)\n * Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11\n (CASSANDRA-15441)\n * Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)\n * Fix various data directory prefix matching issues (CASSANDRA-13974)\n * Minimize clustering values in metadata collector (CASSANDRA-15400)\n * Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)\n * validate value sizes in LegacyLayout (CASSANDRA-15373)\n * Ensure that tracing doesn\u0027t break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)\n * Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)\n * Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)\n * Fix race condition when setting bootstrap flags (CASSANDRA-14878)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SELECT JSON output for empty blobs (CASSANDRA-15435)\n * In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)\n * In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)\n * Make sure user defined compaction transactions are always closed (CASSANDRA-15123)\n * Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)\n * Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)\n * Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)\n * Add ability to cap max negotiable protocol version (CASSANDRA-15193)\n * Gossip tokens on startup if available (CASSANDRA-15335)\n * Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)\n * Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)\n * Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)\n * Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)\n * Filter sstables earlier when running cleanup (CASSANDRA-15100)\n * Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)\n * Avoid updating unchanged gossip states (CASSANDRA-15097)\n * Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)\n * Prevent client requests from blocking on executor task queue (CASSANDRA-15013)\n * Toughen up column drop/recreate type validations (CASSANDRA-15204)\n * LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)\n * Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)\n * Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)\n * Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)\n * Handle paging states serialized with a different version than the session\u0027s (CASSANDRA-15176)\n * Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)\n * Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)\n * Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)\n * Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)\n * Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)\n * Fix mixed mode partition range scans with limit (CASSANDRA-15072)\n * cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)\n * Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)\n * Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)\n * Improve `nodetool status -r` speed (CASSANDRA-14847)\n * Improve merkle tree size and time on heap (CASSANDRA-14096)\n * Add missing commands to nodetool_completion (CASSANDRA-14916)\n * Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)\n * Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)\n * Handle exceptions during authentication/authorization (CASSANDRA-15041)\n * Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)\n * Fix index summary redistribution cancellation (CASSANDRA-15045)\n * Fixing invalid CQL in security documentation (CASSANDRA-15020)\n * Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)\n * Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)\n * Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)\n * Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser\n * Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)\n * If SizeEstimatesRecorder misses a \u0027onDropTable\u0027 notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)\n * Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)\n * Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)\n * Fix cassandra-stress write hang with default options (CASSANDRA-14616)\n * Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)\n * Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)\n * Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)\n * RangeTombstoneList doesn\u0027t properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)\n * Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)\n * Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)\n * Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)\n * Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)\n * Move TWCS message \u0027No compaction necessary for bucket size\u0027 to Trace level (CASSANDRA-14884)\n * Sstable min/max metadata can cause data loss (CASSANDRA-14861)\n * Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)\n * Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)\n * Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)\n * Reverse order reads can return incomplete results (CASSANDRA-14803)\n * Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)\n * Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)\n * DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)\n * Fix corrupted collection deletions for dropped columns in 3.0 2.{1,2} messages (CASSANDRA-14568)\n * Fix corrupted static collection deletions in 3.0 2.{1,2} messages (CASSANDRA-14568)\n * Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)\n * Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)\n * Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)\n * Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)\n * sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)\n * Fix reading columns with non-UTF names from schema (CASSANDRA-14468)\n * Don\u0027t enable client transports when bootstrap is pending (CASSANDRA-14525)\n * MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)\n * Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)\n * Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)\n * Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)\n * Validate supported column type with SASI analyzer (CASSANDRA-13669)\n * Remove BTree.Builder Recycler to reduce memory usage (CASSANDRA-13929)\n * Reduce nodetool GC thread count (CASSANDRA-14475)\n * Fix New SASI view creation during Index Redistribution (CASSANDRA-14055)\n * Remove string formatting lines from BufferPool hot path (CASSANDRA-14416)\n * Update metrics to 3.1.5 (CASSANDRA-12924)\n * Detect OpenJDK jvm type and architecture (CASSANDRA-12793)\n * Don\u0027t use guava collections in the non-system keyspace jmx attributes (CASSANDRA-12271)\n * Allow existing nodes to use all peers in shadow round (CASSANDRA-13851)\n * Fix cqlsh to read connection.ssl cqlshrc option again (CASSANDRA-14299)\n * Downgrade log level to trace for CommitLogSegmentManager (CASSANDRA-14370)\n * CQL fromJson(null) throws NullPointerException (CASSANDRA-13891)\n * Serialize empty buffer as empty string for json output format (CASSANDRA-14245)\n * Allow logging implementation to be interchanged for embedded testing (CASSANDRA-13396)\n * SASI tokenizer for simple delimiter based entries (CASSANDRA-14247)\n * Fix Loss of digits when doing CAST from varint/bigint to decimal (CASSANDRA-14170)\n * RateBasedBackPressure unnecessarily invokes a lock on the Guava RateLimiter (CASSANDRA-14163)\n * Fix wildcard GROUP BY queries (CASSANDRA-14209)\n * Fix corrupted static collection deletions in 3.0 -\u003e 2.{1,2} messages (CASSANDRA-14568)\n * Fix potential IndexOutOfBoundsException with counters (CASSANDRA-14167)\n * Always close RT markers returned by ReadCommand#executeLocally() (CASSANDRA-14515)\n * Reverse order queries with range tombstones can cause data loss (CASSANDRA-14513)\n * Fix regression of lagging commitlog flush log message (CASSANDRA-14451)\n * Add Missing dependencies in pom-all (CASSANDRA-14422)\n * Cleanup StartupClusterConnectivityChecker and PING Verb (CASSANDRA-14447)\n * Fix deprecated repair error notifications from 3.x clusters to legacy JMX clients (CASSANDRA-13121)\n * Cassandra not starting when using enhanced startup scripts in windows (CASSANDRA-14418)\n * Fix progress stats and units in compactionstats (CASSANDRA-12244)\n * Better handle missing partition columns in system_schema.columns (CASSANDRA-14379)\n * Delay hints store excise by write timeout to avoid race with decommission (CASSANDRA-13740)\n * Deprecate background repair and probablistic read_repair_chance table options\n (CASSANDRA-13910)\n * Add missed CQL keywords to documentation (CASSANDRA-14359)\n * Fix unbounded validation compactions on repair / revert CASSANDRA-13797 (CASSANDRA-14332)\n * Avoid deadlock when running nodetool refresh before node is fully up (CASSANDRA-14310)\n * Handle all exceptions when opening sstables (CASSANDRA-14202)\n * Handle incompletely written hint descriptors during startup (CASSANDRA-14080)\n * Handle repeat open bound from SRP in read repair (CASSANDRA-14330)\n * Respect max hint window when hinting for LWT (CASSANDRA-14215)\n * Adding missing WriteType enum values to v3, v4, and v5 spec (CASSANDRA-13697)\n * Don\u0027t regenerate bloomfilter and summaries on startup (CASSANDRA-11163)\n * Fix NPE when performing comparison against a null frozen in LWT (CASSANDRA-14087)\n * Log when SSTables are deleted (CASSANDRA-14302)\n * Fix batch commitlog sync regression (CASSANDRA-14292)\n * Write to pending endpoint when view replica is also base replica (CASSANDRA-14251)\n * Chain commit log marker potential performance regression in batch commit mode (CASSANDRA-14194)\n * Fully utilise specified compaction threads (CASSANDRA-14210)\n * Pre-create deletion log records to finish compactions quicker (CASSANDRA-12763)\n * Fix bug that prevented compaction of SSTables after full repairs (CASSANDRA-14423)\n * Incorrect counting of pending messages in OutboundTcpConnection (CASSANDRA-11551)\n * Fix compaction failure caused by reading un-flushed data (CASSANDRA-12743)\n * Use Bounds instead of Range for sstables in anticompaction (CASSANDRA-14411)\n * Fix JSON queries with IN restrictions and ORDER BY clause (CASSANDRA-14286)\n * Backport circleci yaml (CASSANDRA-14240)\n * Check checksum before decompressing data (CASSANDRA-14284)\n * CVE-2017-5929 Security vulnerability in Logback warning in NEWS.txt (CASSANDRA-14183)\n- Use %license macro\n\nChanges in cassandra-kit:\n- Update to Cassandra 3.11.10 (bsc#1181689, CVE-2020-17516)\n\nChanges in crowbar-core:\n- Update to version 5.0+git.1622489449.a8e60e238:\n * avoid v4.1.5 of delayed_job_active_record (noref)\n * add CVE-2020-26247 to travis ignore list (bsc#1180507)\n\nChanges in crowbar-openstack:\n- Update to version 5.0+git.1616001417.67fd9c2a1:\n * monasca: restart Kibana on update (bsc#1044849)\n\n- Update to version 5.0+git.1615542070.7841c34b7:\n * monasca: fix monasca-server reinstall state check (SOC-11471)\n\nChanges in documentation-suse-openstack-cloud:\n- Update to version 8.20210512:\n * Moved Monasca deployment to immediately after keystone (SOC-11525) (#1312)\n\n- Update to version 8.20210511:\n * Update the correct SLES version to suse-12.3 (SOC-11521) (#1321)\n * Renamed the repo name from SLE12-SP3-HA to SLE-HA12-SP3 (SOC-11523) (#1320)\n\n- Update to version 8.20210511:\n * Add bm-power-status playbook to add sles compute section (#1317)\n\n- Update to version 8.20210507:\n * Add instructions for checking MySQL cert expiry (SOC-11422) (#1311)\n\n- Update to version 8.20210304:\n * Add nova and heat db purge cron jobs to maintenance section (SOC-9876) (#1307)\n\nChanges in grafana:\n- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)\n * Prevent unauthenticated remote attackers from causing a DoS through the\n snapshots API.\n\nChanges in kibana:\n- Ensure /etc/sysconfig/kibana is present\n\n- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, \n ESA-2017-16)\n * [4.6] ignore forked code for babel transpile build phase (#13483)\n * Allow more than match queries in custom filters (#8614) (#10857)\n * [state] don\u0027t make extra $location.replace() calls (#9954)\n * [optimizer] move to querystring-browser package for up-to-date api\n * [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls\n * server: refactor log_interceptor to be more DRY (#9617)\n * server: downgrade ECANCELED logs to debug (#9616)\n * server: do not treat logged warnings as errors (#8746) (#9610)\n * [server/logger] downgrade EPIPE errors to debug level (#9023)\n * Add basepath when redirecting from a trailling slash (#9035)\n * [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)\n * [server/shortUrl] validate urls before shortening them\n- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)\n * This fixes an XSS vulnerability in URL fields\n- Remove %dir declaration from /opt/kibana/optimize to ensure\n no files owned by root end up in there\n- Exclude /opt/kibana/optimize from %fdupes\n- Restart service on upgrade\n- Do not copy LICENSE.txt and README.txt to /opt/kibana\n- Fix rpmlint warnings/errors\n- Switch to explicit patch application\n- Fix source URL\n- Fix logic for systemd/systemv detection\n\nChanges in openstack-heat-templates:\n- Update to version 0.0.0+git.1623056900.7917e18:\n * Fix zuul config for heat-templates-check\n\n- Update to version 0.0.0+git.1621405516.71a0f7a:\n * Remove testr\n\nChanges in openstack-monasca-installer:\n- Add 0001-fix-influxdb-stop-task.patch (SOC-11470)\n- Add 0001-fix-cassandra-deployment.patch (SOC-11470)\n\nChanges in openstack-nova:\n- Update to version nova-16.1.9.dev92:\n * Lowercase ironic driver hash ring and ignore case in cache\n * Include only required fields in ironic node cache\n * Add resource\\_class to fields in ironic node cache\n\n- Update to version nova-16.1.9.dev86:\n * [stable-only] Move grenade jobs to experimental\n * Update resources once in update\\_available\\_resource\n * rt: Make resource tracker always invoking get\\_inventory()\n\n- Update to version nova-16.1.9.dev81:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n\n- Update to version nova-16.1.9.dev80:\n * [placement] Add status and links fields to version document at /\n\nChanges in openstack-nova:\n- Update to version nova-16.1.9.dev92:\n * Lowercase ironic driver hash ring and ignore case in cache\n * Include only required fields in ironic node cache\n * Add resource\\_class to fields in ironic node cache\n\n- Update to version nova-16.1.9.dev86:\n * [stable-only] Move grenade jobs to experimental\n * Update resources once in update\\_available\\_resource\n * rt: Make resource tracker always invoking get\\_inventory()\n\n- Update to version nova-16.1.9.dev81:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n\n- Update to version nova-16.1.9.dev80:\n * [placement] Add status and links fields to version document at /\n\nChanges in python-Django:\n- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)\n * Fixed potential path-traversal via admindocs\u0027 TemplateDetailView.\n- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)\n * Prevented leading zeros in IPv4 addresses.\n\n- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)\n * Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file\n uploads.\n\n- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)\n * Fixed potential directory-traversal via uploaded files\n\n- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)\n * Fixed web cache poisoning via django.utils.http.limited_parse_qsl()\n\nChanges in python-eventlet:\n- Add 0001-websocket-fd-leak-when-client-did-not-close-connecti.patch \n- Add 0002-websocket-Limit-maximum-uncompressed-frame-length-to.patch (bsc#1185836 CVE-2021-21419)\n * websocket: Limit maximum uncompressed frame length to 8MiB\n\nChanges in python-py:\n- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)\n * svnwc: fix regular expression vulnerable to DoS in blame\n functionality\n\nChanges in python-pysaml2:\n- Add %dir declaration for %{_licensedir}\n\n- Fix CVE-2021-21238, bsc#1181277 with\n 0004-Strengthen-XSW-tests.patch ,\n 0005-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,\n 0006-Add-xsd-schemas.patch ,\n 0007-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .\n This adds a dependency on python-xmlschema, which depends on\n python-elementpath and build depends python-pathlib2, which depends on\n python-scandir, thus all these need to be added for this to work.\n The used python-xmlschema needs to support the sandbox argument\n which was added in 1.2.0 and refined in 1.2.1, but that version\n doesn\u0027t support python2, so a patched version that does both is\n needed.\n 0009-Make-previous-commits-python2-compatible.patch to\n not add a dependency on reportlib_resources and make other\n changes python2 compatible.\n- Fix CVE-2021-21239, bsc#1181278 with\n 0008-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch\n\nChanges in venv-openstack-keystone:\n- Add python-xmlschema and python-elementpath for new python-pysaml2 version.\n\nChanges in python-xmlschema:\n\n- Add missed BuildRequires on pathlib2\n\n- Add 3 patches to backport sandbox argument, which is needed by a security fix\n in python-pysaml2 and one patch to make backport python2 compatible.\n- Upstream url changed\n- Add rpmlintrc to make it work on Leap 42.3\n- Update to 1.0.18:\n * Fix for *ModelVisitor.iter_unordered_content()*\n * Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode\n * Fixed validation tests with all converters\n * Added UnorderedConverter to validation tests\n- Update to 1.0.17:\n * Enhancement of validation-only speed (~15%)\n * Added *is_valid()* and *iter_errors()* to module API\n- Update to 1.0.16:\n * Improved XMLResource class for working with compressed files\n * Fix for validation with XSD wildcards and \u0027lax\u0027 process content\n * Fix ambiguous items validation for xs:choice and xs:sequence models\n\n- Handle UnicodeDecodeErrors during build process\n\n- Update to 1.0.15:\n * Improved XPath 2.0 bindings\n * Added logging for schema initialization and building (handled with argument loglevel)\n * Update encoding of collapsed contents with a new model based reordering method\n * Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)\n * Fixed half of failed W3C instance tests (remain 255 over 15344 tests)\n\n- Initial commit, needed by pytest 5.1.2\n\nChanges in python-elementpath:\n\n- Update to 1.3.1:\n * Improved schema proxy\n * Improved XSD type matching using paths\n * Cached parent path for XPathContext (only Python 3)\n * Improve typed selection with TypedAttribute and TypedElement named-tuples\n * Add iter_results to XPathContext\n * Remove XMLSchemaProxy from package\n * Fix descendant shortcut operator \u0027//\u0027\n * Fix text() function\n * Fix typed select of \u0027(name)\u0027 token\n * Fix 24-hour time for DateTime\n\n- Skip test_hashing to fix 32bit builds\n\n- Initial commit needed by python-xmlschema\n\nChanges in python-six:\n- Update in SLE-12 (bsc#1176784, jsc#ECO-3105, jsc#PM-2352)\n\n- Fix testsuite on SLE-12\n + Add python to BuildRequires for suse_version less 1500\n\n- Fix dbm deps as the MU for provides: python-dbm was not released\n on sle12 yet\n- Add requirement on pytest \u003e 4.0 to see the pytest module works\n with this MU\n\n- Do not cause buildcycle with previous change but rather\n install the egg-info prepared metadata from the tarball\n\n- use setuptools for building to support pip 10.x (bsc#1166139)\n\n- update to 1.14.0\n * Add `six.assertNotRegex`\n * `six.moves._dummy_thread` now points to the `_thread` module on\n Python 3.9+. Python 3.7 and later requires threading and deprecated the\n `_dummy_thread` module\n * Remove support for Python 2.6 and Python 3.2\n * `six.wraps` now ignores missing attributes\n\n- Pull in dbm/gdbm module from python for testing\n\n- update to 0.13.0:\n - Issue #298, pull request #299: Add `six.moves.dbm_ndbm`.\n - Issue #155: Add `six.moves.collections_abc`, which aliases the `collections`\n module on Python 2-3.2 and the `collections.abc` on Python 3.3 and greater.\n - Pull request #304: Re-add distutils fallback in `setup.py`.\n - Pull request #305: On Python 3.7, `with_metaclass` supports classes using PEP\n\n- Simplify the pytest call\n\n- Fix pytest call\n- Fixdocumentation package generating\n\n- Change %pretrans back to %pre to fix bootstrap issue\n boo#1123064 bsc#1143893\n\n- Require just base python module, even full python is too much\n and it is not required here\n\n- Update to 0.12.0:\n * `six.add_metaclass` now preserves `__qualname__` from the\n original class.\n * Add `six.ensure_binary`, `six.ensure_text`, and\n `six.ensure_str`.\n- Because of cyclical dependencies between six and Sphinx, we\n need to to do multibuild.\n\n- Include in SLE-12 (FATE#326838, bsc#1113302)\n\n- remove egg-info directory in %pretrans\n- fix egg-info directory pattern\n- match any version of egg-info for a certain python version\n\n- Break the cycilical dependency on python-setuptools.\n\n- Remove argparse dependency\n\n- build python3 subpackage (FATE#324435, bsc#1073879)\n\n- remove egg-info directory before installation if it exists,\n because setuptools produce directory and six switched to distutils\n that produce a file\n (and because rpm can\u0027t handle that by itself)\n fixes bsc#1057496\n\n- Fix Source url\n\n- README-\u003eREADME.rst, add CHANGES\n- update to version 1.11.0:\n * Pull request #178: `with_metaclass` now properly proxies\n `__prepare__` to the underlying metaclass.\n * Pull request #191: Allow `with_metaclass` to work with metaclasses\n implemented in C.\n * Pull request #203: Add parse_http_list and parse_keqv_list to\n moved urllib.request.\n * Pull request #172 and issue #171: Add unquote_to_bytes to moved\n urllib.parse.\n * Pull request #167: Add `six.moves.getoutput`.\n * Pull request #80: Add `six.moves.urllib_parse.splitvalue`.\n * Pull request #75: Add `six.moves.email_mime_image`.\n * Pull request #72: Avoid creating reference cycles through\n tracebacks in `reraise`.\n\n- Submit 1.9.0 to SLE-12 (fate#319030, fate#318838, bsc#940812)\n\n- sanitize release line in specfile\n\nChanges in rubygem-activerecord-session_store.SUSE_SLE-12-SP4_Update_Products_Cloud9_Update:\n- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)\n * This requires CVE-2019-16782.patch to be included in rubygem-actionpack-4_2\n to work correctly.\n\nChanges in venv-openstack-keystone:\n- Add python-xmlschema and python-elementpath for new python-pysaml2 version.\n\n- Add python-defusedxml (bsc#1019074)\n\n- Inherit version number of venv from main component (SCRD-8523)\n\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "HPE-Helion-OpenStack-8-2021-2554,SUSE-2021-2554,SUSE-OpenStack-Cloud-8-2021-2554,SUSE-OpenStack-Cloud-Crowbar-8-2021-2554",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2554-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2554-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212554-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2554-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009227.html"
},
{
"category": "self",
"summary": "SUSE Bug 1019074",
"url": "https://bugzilla.suse.com/1019074"
},
{
"category": "self",
"summary": "SUSE Bug 1044849",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "self",
"summary": "SUSE Bug 1057496",
"url": "https://bugzilla.suse.com/1057496"
},
{
"category": "self",
"summary": "SUSE Bug 1073879",
"url": "https://bugzilla.suse.com/1073879"
},
{
"category": "self",
"summary": "SUSE Bug 1113302",
"url": "https://bugzilla.suse.com/1113302"
},
{
"category": "self",
"summary": "SUSE Bug 1123064",
"url": "https://bugzilla.suse.com/1123064"
},
{
"category": "self",
"summary": "SUSE Bug 1143893",
"url": "https://bugzilla.suse.com/1143893"
},
{
"category": "self",
"summary": "SUSE Bug 1166139",
"url": "https://bugzilla.suse.com/1166139"
},
{
"category": "self",
"summary": "SUSE Bug 1176784",
"url": "https://bugzilla.suse.com/1176784"
},
{
"category": "self",
"summary": "SUSE Bug 1179805",
"url": "https://bugzilla.suse.com/1179805"
},
{
"category": "self",
"summary": "SUSE Bug 1180507",
"url": "https://bugzilla.suse.com/1180507"
},
{
"category": "self",
"summary": "SUSE Bug 1181277",
"url": "https://bugzilla.suse.com/1181277"
},
{
"category": "self",
"summary": "SUSE Bug 1181278",
"url": "https://bugzilla.suse.com/1181278"
},
{
"category": "self",
"summary": "SUSE Bug 1181689",
"url": "https://bugzilla.suse.com/1181689"
},
{
"category": "self",
"summary": "SUSE Bug 1181828",
"url": "https://bugzilla.suse.com/1181828"
},
{
"category": "self",
"summary": "SUSE Bug 1182433",
"url": "https://bugzilla.suse.com/1182433"
},
{
"category": "self",
"summary": "SUSE Bug 1183174",
"url": "https://bugzilla.suse.com/1183174"
},
{
"category": "self",
"summary": "SUSE Bug 1183803",
"url": "https://bugzilla.suse.com/1183803"
},
{
"category": "self",
"summary": "SUSE Bug 1184148",
"url": "https://bugzilla.suse.com/1184148"
},
{
"category": "self",
"summary": "SUSE Bug 1185623",
"url": "https://bugzilla.suse.com/1185623"
},
{
"category": "self",
"summary": "SUSE Bug 1185836",
"url": "https://bugzilla.suse.com/1185836"
},
{
"category": "self",
"summary": "SUSE Bug 1186608",
"url": "https://bugzilla.suse.com/1186608"
},
{
"category": "self",
"summary": "SUSE Bug 1186611",
"url": "https://bugzilla.suse.com/1186611"
},
{
"category": "self",
"summary": "SUSE Bug 940812",
"url": "https://bugzilla.suse.com/940812"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11481 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11481/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11499 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5929 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25025 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-17516 page",
"url": "https://www.suse.com/security/cve/CVE-2020-17516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26247 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-29651 page",
"url": "https://www.suse.com/security/cve/CVE-2020-29651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21238 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21239 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21419 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21419/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23336 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23336/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27358 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27358/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28658 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31542 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31542/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33203 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33571 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33571/"
}
],
"title": "Security update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema ",
"tracking": {
"current_release_date": "2021-07-28T15:27:22Z",
"generator": {
"date": "2021-07-28T15:27:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2554-1",
"initial_release_date": "2021-07-28T15:27:22Z",
"revision_history": [
{
"date": "2021-07-28T15:27:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-5.3.5.aarch64",
"product": {
"name": "cassandra-3.11.10-5.3.5.aarch64",
"product_id": "cassandra-3.11.10-5.3.5.aarch64"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-5.3.5.aarch64",
"product": {
"name": "cassandra-javadoc-3.11.10-5.3.5.aarch64",
"product_id": "cassandra-javadoc-3.11.10-5.3.5.aarch64"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-5.3.5.aarch64",
"product": {
"name": "cassandra-tools-3.11.10-5.3.5.aarch64",
"product_id": "cassandra-tools-3.11.10-5.3.5.aarch64"
}
},
{
"category": "product_version",
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.aarch64",
"product": {
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.aarch64",
"product_id": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.aarch64"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.aarch64",
"product": {
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.aarch64",
"product_id": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.aarch64"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.aarch64",
"product": {
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.aarch64",
"product_id": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.aarch64"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-4.18.2.aarch64",
"product": {
"name": "grafana-6.7.4-4.18.2.aarch64",
"product_id": "grafana-6.7.4-4.18.2.aarch64"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-3.9.2.aarch64",
"product": {
"name": "kibana-4.6.6-3.9.2.aarch64",
"product_id": "kibana-4.6.6-3.9.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.aarch64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.aarch64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.aarch64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.aarch64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"product": {
"name": "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"product_id": "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch"
}
},
{
"category": "product_version",
"name": "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"product_id": "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"product_id": "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"product_id": "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"product_id": "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"product_id": "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"product_id": "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"product": {
"name": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"product_id": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"product": {
"name": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"product_id": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "python-Django-1.11.29-3.25.3.noarch",
"product": {
"name": "python-Django-1.11.29-3.25.3.noarch",
"product_id": "python-Django-1.11.29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "python-elementpath-1.3.1-1.3.2.noarch",
"product": {
"name": "python-elementpath-1.3.1-1.3.2.noarch",
"product_id": "python-elementpath-1.3.1-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python-eventlet-0.20.0-6.3.3.noarch",
"product": {
"name": "python-eventlet-0.20.0-6.3.3.noarch",
"product_id": "python-eventlet-0.20.0-6.3.3.noarch"
}
},
{
"category": "product_version",
"name": "python-nova-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "python-nova-16.1.9~dev92-3.48.5.noarch",
"product_id": "python-nova-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "python-py-1.4.34-3.3.3.noarch",
"product": {
"name": "python-py-1.4.34-3.3.3.noarch",
"product_id": "python-py-1.4.34-3.3.3.noarch"
}
},
{
"category": "product_version",
"name": "python-pysaml2-4.0.2-5.9.2.noarch",
"product": {
"name": "python-pysaml2-4.0.2-5.9.2.noarch",
"product_id": "python-pysaml2-4.0.2-5.9.2.noarch"
}
},
{
"category": "product_version",
"name": "python-xmlschema-1.0.18-1.3.3.noarch",
"product": {
"name": "python-xmlschema-1.0.18-1.3.3.noarch",
"product_id": "python-xmlschema-1.0.18-1.3.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"product": {
"name": "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"product_id": "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"product": {
"name": "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"product_id": "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"product": {
"name": "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"product_id": "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"product": {
"name": "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"product_id": "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"product": {
"name": "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"product_id": "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"product": {
"name": "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"product_id": "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"product": {
"name": "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"product_id": "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"product": {
"name": "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"product_id": "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"product": {
"name": "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"product_id": "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"product": {
"name": "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"product_id": "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"product": {
"name": "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"product_id": "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"product": {
"name": "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"product_id": "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"product": {
"name": "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"product_id": "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"product": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"product_id": "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"product": {
"name": "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"product_id": "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"product": {
"name": "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"product_id": "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"product": {
"name": "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"product_id": "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"product": {
"name": "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"product_id": "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"product": {
"name": "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"product_id": "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"product": {
"name": "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"product_id": "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"product": {
"name": "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"product_id": "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"product": {
"name": "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"product_id": "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch"
}
},
{
"category": "product_version",
"name": "cassandra-kit-3.11.10-3.3.2.noarch",
"product": {
"name": "cassandra-kit-3.11.10-3.3.2.noarch",
"product_id": "cassandra-kit-3.11.10-3.3.2.noarch"
}
},
{
"category": "product_version",
"name": "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"product": {
"name": "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"product_id": "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-socmmsoperator-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-socmmsoperator-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-socmmsoperator-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-socmosoperator-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-socmosoperator-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-socmosoperator-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-socmoverview-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-socmoverview-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-socmoverview-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"product": {
"name": "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"product_id": "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-network-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-network-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-network-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-test-16.1.9~dev92-3.48.5.noarch",
"product": {
"name": "openstack-nova-test-16.1.9~dev92-3.48.5.noarch",
"product_id": "openstack-nova-test-16.1.9~dev92-3.48.5.noarch"
}
},
{
"category": "product_version",
"name": "python-eventlet-doc-0.20.0-6.3.3.noarch",
"product": {
"name": "python-eventlet-doc-0.20.0-6.3.3.noarch",
"product_id": "python-eventlet-doc-0.20.0-6.3.3.noarch"
}
},
{
"category": "product_version",
"name": "python-six-1.14.0-3.3.1.noarch",
"product": {
"name": "python-six-1.14.0-3.3.1.noarch",
"product_id": "python-six-1.14.0-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "python-six-doc-1.14.0-3.3.1.noarch",
"product": {
"name": "python-six-doc-1.14.0-3.3.1.noarch",
"product_id": "python-six-doc-1.14.0-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-Django-1.11.29-3.25.3.noarch",
"product": {
"name": "python3-Django-1.11.29-3.25.3.noarch",
"product_id": "python3-Django-1.11.29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "python3-elementpath-1.3.1-1.3.2.noarch",
"product": {
"name": "python3-elementpath-1.3.1-1.3.2.noarch",
"product_id": "python3-elementpath-1.3.1-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-py-1.4.34-3.3.3.noarch",
"product": {
"name": "python3-py-1.4.34-3.3.3.noarch",
"product_id": "python3-py-1.4.34-3.3.3.noarch"
}
},
{
"category": "product_version",
"name": "python3-six-1.14.0-3.3.1.noarch",
"product": {
"name": "python3-six-1.14.0-3.3.1.noarch",
"product_id": "python3-six-1.14.0-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-xmlschema-1.0.18-1.3.3.noarch",
"product": {
"name": "python3-xmlschema-1.0.18-1.3.3.noarch",
"product_id": "python3-xmlschema-1.0.18-1.3.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"product": {
"name": "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"product_id": "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-zaqar-x86_64-5.0.1-10.14.3.noarch",
"product": {
"name": "venv-openstack-zaqar-x86_64-5.0.1-10.14.3.noarch",
"product_id": "venv-openstack-zaqar-x86_64-5.0.1-10.14.3.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-5.3.5.ppc64le",
"product": {
"name": "cassandra-3.11.10-5.3.5.ppc64le",
"product_id": "cassandra-3.11.10-5.3.5.ppc64le"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-5.3.5.ppc64le",
"product": {
"name": "cassandra-javadoc-3.11.10-5.3.5.ppc64le",
"product_id": "cassandra-javadoc-3.11.10-5.3.5.ppc64le"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-5.3.5.ppc64le",
"product": {
"name": "cassandra-tools-3.11.10-5.3.5.ppc64le",
"product_id": "cassandra-tools-3.11.10-5.3.5.ppc64le"
}
},
{
"category": "product_version",
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le",
"product": {
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le",
"product_id": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le",
"product": {
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le",
"product_id": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le",
"product": {
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le",
"product_id": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.ppc64le"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-4.18.2.ppc64le",
"product": {
"name": "grafana-6.7.4-4.18.2.ppc64le",
"product_id": "grafana-6.7.4-4.18.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-3.9.2.ppc64le",
"product": {
"name": "kibana-4.6.6-3.9.2.ppc64le",
"product_id": "kibana-4.6.6-3.9.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.ppc64le",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.ppc64le",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.ppc64le",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.ppc64le",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.s390x",
"product": {
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.s390x",
"product_id": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.s390x"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.s390x",
"product": {
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.s390x",
"product_id": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.s390x"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.s390x",
"product": {
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.s390x",
"product_id": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.s390x"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-4.18.2.s390x",
"product": {
"name": "grafana-6.7.4-4.18.2.s390x",
"product_id": "grafana-6.7.4-4.18.2.s390x"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-3.9.2.s390x",
"product": {
"name": "kibana-4.6.6-3.9.2.s390x",
"product_id": "kibana-4.6.6-3.9.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.s390x",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.s390x",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.s390x",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.s390x",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-5.3.5.x86_64",
"product": {
"name": "cassandra-3.11.10-5.3.5.x86_64",
"product_id": "cassandra-3.11.10-5.3.5.x86_64"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-5.3.5.x86_64",
"product": {
"name": "cassandra-tools-3.11.10-5.3.5.x86_64",
"product_id": "cassandra-tools-3.11.10-5.3.5.x86_64"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-4.18.2.x86_64",
"product": {
"name": "grafana-6.7.4-4.18.2.x86_64",
"product_id": "grafana-6.7.4-4.18.2.x86_64"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-3.9.2.x86_64",
"product": {
"name": "kibana-4.6.6-3.9.2.x86_64",
"product_id": "kibana-4.6.6-3.9.2.x86_64"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-5.3.5.x86_64",
"product": {
"name": "cassandra-javadoc-3.11.10-5.3.5.x86_64",
"product_id": "cassandra-javadoc-3.11.10-5.3.5.x86_64"
}
},
{
"category": "product_version",
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"product": {
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"product_id": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"product": {
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"product_id": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"product": {
"name": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"product_id": "crowbar-core-devel-5.0+git.1622489449.a8e60e238-3.50.4.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.x86_64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.x86_64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-3.3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Helion OpenStack 8",
"product": {
"name": "HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:hpe-helion-openstack:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 8",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch"
},
"product_reference": "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-3.11.10-5.3.5.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64"
},
"product_reference": "cassandra-3.11.10-5.3.5.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-tools-3.11.10-5.3.5.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64"
},
"product_reference": "cassandra-tools-3.11.10-5.3.5.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-4.18.2.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64"
},
"product_reference": "grafana-6.7.4-4.18.2.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kibana-4.6.6-3.9.2.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64"
},
"product_reference": "kibana-4.6.6-3.9.2.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch"
},
"product_reference": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch"
},
"product_reference": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Django-1.11.29-3.25.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch"
},
"product_reference": "python-Django-1.11.29-3.25.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-elementpath-1.3.1-1.3.2.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch"
},
"product_reference": "python-elementpath-1.3.1-1.3.2.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-eventlet-0.20.0-6.3.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch"
},
"product_reference": "python-eventlet-0.20.0-6.3.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-16.1.9~dev92-3.48.5.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "python-nova-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-py-1.4.34-3.3.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch"
},
"product_reference": "python-py-1.4.34-3.3.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.0.2-5.9.2.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch"
},
"product_reference": "python-pysaml2-4.0.2-5.9.2.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-xmlschema-1.0.18-1.3.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch"
},
"product_reference": "python-xmlschema-1.0.18-1.3.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch"
},
"product_reference": "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch"
},
"product_reference": "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch"
},
"product_reference": "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch"
},
"product_reference": "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch"
},
"product_reference": "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch"
},
"product_reference": "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch"
},
"product_reference": "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch"
},
"product_reference": "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch"
},
"product_reference": "venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch"
},
"product_reference": "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch"
},
"product_reference": "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch"
},
"product_reference": "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch"
},
"product_reference": "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch"
},
"product_reference": "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch"
},
"product_reference": "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch"
},
"product_reference": "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch"
},
"product_reference": "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch"
},
"product_reference": "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch"
},
"product_reference": "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch"
},
"product_reference": "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch"
},
"product_reference": "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch"
},
"product_reference": "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch"
},
"product_reference": "ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64"
},
"product_reference": "cassandra-3.11.10-5.3.5.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-tools-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64"
},
"product_reference": "cassandra-tools-3.11.10-5.3.5.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-4.18.2.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64"
},
"product_reference": "grafana-6.7.4-4.18.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kibana-4.6.6-3.9.2.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64"
},
"product_reference": "kibana-4.6.6-3.9.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch"
},
"product_reference": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch"
},
"product_reference": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Django-1.11.29-3.25.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch"
},
"product_reference": "python-Django-1.11.29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch"
},
"product_reference": "python-elementpath-1.3.1-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-eventlet-0.20.0-6.3.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch"
},
"product_reference": "python-eventlet-0.20.0-6.3.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "python-nova-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-py-1.4.34-3.3.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch"
},
"product_reference": "python-py-1.4.34-3.3.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.0.2-5.9.2.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch"
},
"product_reference": "python-pysaml2-4.0.2-5.9.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-xmlschema-1.0.18-1.3.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch"
},
"product_reference": "python-xmlschema-1.0.18-1.3.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch"
},
"product_reference": "venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch"
},
"product_reference": "venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch"
},
"product_reference": "venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch"
},
"product_reference": "venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch"
},
"product_reference": "venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch"
},
"product_reference": "venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch"
},
"product_reference": "venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch"
},
"product_reference": "venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch"
},
"product_reference": "venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch"
},
"product_reference": "venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch"
},
"product_reference": "venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch"
},
"product_reference": "venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch"
},
"product_reference": "venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch"
},
"product_reference": "venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch"
},
"product_reference": "venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch"
},
"product_reference": "venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch"
},
"product_reference": "venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch"
},
"product_reference": "venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch"
},
"product_reference": "venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch"
},
"product_reference": "venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch"
},
"product_reference": "venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch"
},
"product_reference": "venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64"
},
"product_reference": "cassandra-3.11.10-5.3.5.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-tools-3.11.10-5.3.5.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64"
},
"product_reference": "cassandra-tools-3.11.10-5.3.5.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64"
},
"product_reference": "crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64"
},
"product_reference": "crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch"
},
"product_reference": "crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch"
},
"product_reference": "documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-4.18.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64"
},
"product_reference": "grafana-6.7.4-4.18.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kibana-4.6.6-3.9.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64"
},
"product_reference": "kibana-4.6.6-3.9.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch"
},
"product_reference": "openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch"
},
"product_reference": "openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Django-1.11.29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch"
},
"product_reference": "python-Django-1.11.29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch"
},
"product_reference": "python-elementpath-1.3.1-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-eventlet-0.20.0-6.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch"
},
"product_reference": "python-eventlet-0.20.0-6.3.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-16.1.9~dev92-3.48.5.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch"
},
"product_reference": "python-nova-16.1.9~dev92-3.48.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-py-1.4.34-3.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch"
},
"product_reference": "python-py-1.4.34-3.3.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.0.2-5.9.2.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch"
},
"product_reference": "python-pysaml2-4.0.2-5.9.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-xmlschema-1.0.18-1.3.3.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch"
},
"product_reference": "python-xmlschema-1.0.18-1.3.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
},
"product_reference": "ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-11481",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11481"
}
],
"notes": [
{
"category": "general",
"text": "Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11481",
"url": "https://www.suse.com/security/cve/CVE-2017-11481"
},
{
"category": "external",
"summary": "SUSE Bug 1044849 for CVE-2017-11481",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "external",
"summary": "SUSE Bug 1072315 for CVE-2017-11481",
"url": "https://bugzilla.suse.com/1072315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2017-11481"
},
{
"cve": "CVE-2017-11499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11499"
}
],
"notes": [
{
"category": "general",
"text": "Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building with V8 snapshots enabled by default which caused the initially randomized seed to be overwritten on startup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11499",
"url": "https://www.suse.com/security/cve/CVE-2017-11499"
},
{
"category": "external",
"summary": "SUSE Bug 1044849 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "external",
"summary": "SUSE Bug 1048299 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1048299"
},
{
"category": "external",
"summary": "SUSE Bug 1051117 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1051117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "important"
}
],
"title": "CVE-2017-11499"
},
{
"cve": "CVE-2017-5929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5929"
}
],
"notes": [
{
"category": "general",
"text": "QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5929",
"url": "https://www.suse.com/security/cve/CVE-2017-5929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2017-5929"
},
{
"cve": "CVE-2019-25025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25025"
}
],
"notes": [
{
"category": "general",
"text": "The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepancies to achieve a correct guess in a relatively short amount of time. This is a related issue to CVE-2019-16782.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25025",
"url": "https://www.suse.com/security/cve/CVE-2019-25025"
},
{
"category": "external",
"summary": "SUSE Bug 1159548 for CVE-2019-25025",
"url": "https://bugzilla.suse.com/1159548"
},
{
"category": "external",
"summary": "SUSE Bug 1183174 for CVE-2019-25025",
"url": "https://bugzilla.suse.com/1183174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2019-25025"
},
{
"cve": "CVE-2020-17516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-17516"
}
],
"notes": [
{
"category": "general",
"text": "Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using \u0027dc\u0027 or \u0027rack\u0027 internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted connection despite not being in the same rack or dc, and bypass mutual TLS requirement.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-17516",
"url": "https://www.suse.com/security/cve/CVE-2020-17516"
},
{
"category": "external",
"summary": "SUSE Bug 1181689 for CVE-2020-17516",
"url": "https://bugzilla.suse.com/1181689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2020-17516"
},
{
"cve": "CVE-2020-26247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-26247"
}
],
"notes": [
{
"category": "general",
"text": "Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers with XPath and CSS selector support. In Nokogiri before version 1.11.0.rc4 there is an XXE vulnerability. XML Schemas parsed by Nokogiri::XML::Schema are trusted by default, allowing external resources to be accessed over the network, potentially enabling XXE or SSRF attacks. This behavior is counter to the security policy followed by Nokogiri maintainers, which is to treat all input as untrusted by default whenever possible. This is fixed in Nokogiri version 1.11.0.rc4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-26247",
"url": "https://www.suse.com/security/cve/CVE-2020-26247"
},
{
"category": "external",
"summary": "SUSE Bug 1180507 for CVE-2020-26247",
"url": "https://bugzilla.suse.com/1180507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2020-26247"
},
{
"cve": "CVE-2020-29651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-29651"
}
],
"notes": [
{
"category": "general",
"text": "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-29651",
"url": "https://www.suse.com/security/cve/CVE-2020-29651"
},
{
"category": "external",
"summary": "SUSE Bug 1179805 for CVE-2020-29651",
"url": "https://bugzilla.suse.com/1179805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2020-29651"
},
{
"cve": "CVE-2021-21238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21238"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping because it did not validate the SAML document against an XML schema. This allowed invalid XML documents to be processed and such a document can trick pysaml2 with a wrapped signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21238",
"url": "https://www.suse.com/security/cve/CVE-2021-21238"
},
{
"category": "external",
"summary": "SUSE Bug 1181277 for CVE-2021-21238",
"url": "https://bugzilla.suse.com/1181277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-21238"
},
{
"cve": "CVE-2021-21239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21239"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21239",
"url": "https://www.suse.com/security/cve/CVE-2021-21239"
},
{
"category": "external",
"summary": "SUSE Bug 1181278 for CVE-2021-21239",
"url": "https://bugzilla.suse.com/1181278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-21239"
},
{
"cve": "CVE-2021-21419",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21419"
}
],
"notes": [
{
"category": "general",
"text": "Eventlet is a concurrent networking library for Python. A websocket peer may exhaust memory on Eventlet side by sending very large websocket frames. Malicious peer may exhaust memory on Eventlet side by sending highly compressed data frame. A patch in version 0.31.0 restricts websocket frame to reasonable limits. As a workaround, restricting memory usage via OS limits would help against overall machine exhaustion, but there is no workaround to protect Eventlet process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21419",
"url": "https://www.suse.com/security/cve/CVE-2021-21419"
},
{
"category": "external",
"summary": "SUSE Bug 1185836 for CVE-2021-21419",
"url": "https://bugzilla.suse.com/1185836"
},
{
"category": "external",
"summary": "SUSE Bug 1216802 for CVE-2021-21419",
"url": "https://bugzilla.suse.com/1216802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "important"
}
],
"title": "CVE-2021-21419"
},
{
"cve": "CVE-2021-23336",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23336"
}
],
"notes": [
{
"category": "general",
"text": "The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23336",
"url": "https://www.suse.com/security/cve/CVE-2021-23336"
},
{
"category": "external",
"summary": "SUSE Bug 1182179 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182179"
},
{
"category": "external",
"summary": "SUSE Bug 1182379 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182379"
},
{
"category": "external",
"summary": "SUSE Bug 1182433 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-23336"
},
{
"cve": "CVE-2021-27358",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27358"
}
],
"notes": [
{
"category": "general",
"text": "The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27358",
"url": "https://www.suse.com/security/cve/CVE-2021-27358"
},
{
"category": "external",
"summary": "SUSE Bug 1183803 for CVE-2021-27358",
"url": "https://bugzilla.suse.com/1183803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "important"
}
],
"title": "CVE-2021-27358"
},
{
"cve": "CVE-2021-28658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28658"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28658",
"url": "https://www.suse.com/security/cve/CVE-2021-28658"
},
{
"category": "external",
"summary": "SUSE Bug 1184148 for CVE-2021-28658",
"url": "https://bugzilla.suse.com/1184148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "low"
}
],
"title": "CVE-2021-28658"
},
{
"cve": "CVE-2021-31542",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31542"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31542",
"url": "https://www.suse.com/security/cve/CVE-2021-31542"
},
{
"category": "external",
"summary": "SUSE Bug 1185623 for CVE-2021-31542",
"url": "https://bugzilla.suse.com/1185623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-31542"
},
{
"cve": "CVE-2021-33203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33203"
}
],
"notes": [
{
"category": "general",
"text": "Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs templates have been customized by application developers to also show file contents, then not only the existence but also the file contents would have been exposed. In other words, there is directory traversal outside of the template root directories.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33203",
"url": "https://www.suse.com/security/cve/CVE-2021-33203"
},
{
"category": "external",
"summary": "SUSE Bug 1186608 for CVE-2021-33203",
"url": "https://bugzilla.suse.com/1186608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-33203"
},
{
"cve": "CVE-2021-33571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33571"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4_address and validate_ipv46_address are unaffected with Python 3.9.5+..) .",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33571",
"url": "https://www.suse.com/security/cve/CVE-2021-33571"
},
{
"category": "external",
"summary": "SUSE Bug 1186611 for CVE-2021-33571",
"url": "https://bugzilla.suse.com/1186611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"HPE Helion OpenStack 8:cassandra-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-installation-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-operations-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-opsconsole-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-planning-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-security-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:documentation-hpe-helion-openstack-user-8.20210512-1.32.5.noarch",
"HPE Helion OpenStack 8:grafana-6.7.4-4.18.2.x86_64",
"HPE Helion OpenStack 8:kibana-4.6.6-3.9.2.x86_64",
"HPE Helion OpenStack 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"HPE Helion OpenStack 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"HPE Helion OpenStack 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-Django-1.11.29-3.25.3.noarch",
"HPE Helion OpenStack 8:python-elementpath-1.3.1-1.3.2.noarch",
"HPE Helion OpenStack 8:python-eventlet-0.20.0-6.3.3.noarch",
"HPE Helion OpenStack 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"HPE Helion OpenStack 8:python-py-1.4.34-3.3.3.noarch",
"HPE Helion OpenStack 8:python-pysaml2-4.0.2-5.9.2.noarch",
"HPE Helion OpenStack 8:python-xmlschema-1.0.18-1.3.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"HPE Helion OpenStack 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"HPE Helion OpenStack 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud 8:ardana-cobbler-8.0+git.1614096566.e8c2b27-3.44.3.noarch",
"SUSE OpenStack Cloud 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-installation-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-operations-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-opsconsole-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-planning-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-security-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:documentation-suse-openstack-cloud-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-aodh-x86_64-5.1.1~dev7-12.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-barbican-x86_64-5.0.2~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.30.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-cinder-x86_64-11.2.3~dev29-14.34.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-designate-x86_64-5.0.3~dev7-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-glance-x86_64-15.0.3~dev3-12.31.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-heat-x86_64-9.0.8~dev22-12.33.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-horizon-x86_64-12.0.5~dev6-14.36.6.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-ironic-x86_64-9.1.8~dev8-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-keystone-x86_64-12.0.4~dev11-11.35.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.32.2.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-manila-x86_64-5.1.1~dev5-12.37.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-monasca-x86_64-2.2.2~dev1-11.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-murano-x86_64-4.0.2~dev2-12.28.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-neutron-x86_64-11.0.9~dev69-13.38.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-nova-x86_64-16.1.9~dev92-11.36.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-octavia-x86_64-1.0.6~dev3-12.33.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-sahara-x86_64-7.0.5~dev4-11.32.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.23.3.noarch",
"SUSE OpenStack Cloud 8:venv-openstack-trove-x86_64-8.0.2~dev2-11.32.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:cassandra-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:cassandra-tools-3.11.10-5.3.5.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-core-branding-upstream-5.0+git.1622489449.a8e60e238-3.50.4.x86_64",
"SUSE OpenStack Cloud Crowbar 8:crowbar-openstack-5.0+git.1616001417.67fd9c2a1-4.52.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-deployment-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-supplement-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-admin-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:documentation-suse-openstack-cloud-upstream-user-8.20210512-1.32.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:grafana-6.7.4-4.18.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:kibana-4.6.6-3.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:openstack-heat-templates-0.0.0+git.1623056900.7917e18-3.21.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-monasca-installer-20190923_16.32-3.18.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-cells-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-compute-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-conductor-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-console-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-consoleauth-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-doc-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-novncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-placement-api-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-scheduler-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-serialproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:openstack-nova-vncproxy-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-Django-1.11.29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-eventlet-0.20.0-6.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-nova-16.1.9~dev92-3.48.5.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-py-1.4.34-3.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-pysaml2-4.0.2-5.9.2.noarch",
"SUSE OpenStack Cloud Crowbar 8:python-xmlschema-1.0.18-1.3.3.noarch",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-rubygem-activerecord-session_store-0.1.2-3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-28T15:27:22Z",
"details": "important"
}
],
"title": "CVE-2021-33571"
}
]
}
SUSE-SU-2021:1962-1
Vulnerability from csaf_suse - Published: 2021-06-11 13:13 - Updated: 2021-06-11 13:13Summary
Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone
Notes
Title of the patch
Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone
Description of the patch
This update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone contains the following fixes:
Security fixes included in this update:
cassandra:
- CVE-2020-17516: Fixed an issue where encryption between nodes was not enforced
correctly for certain internode_encryption settings (bsc#1181689)
grafana:
- CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed multiple cross
site scripting vulnerabilities in the dashboard. (bsc#1172450)
- CVE-2021-27358: Fixed a denial of service via remote API call. (bsc#1183803)
- CVE-2019-15043: Fixed a denial of service by an unauthenticated user
in the snapshot HTTP API (bsc#1148383)
- CVE-2020-13379: Fixed an information leak to unauthenticated users. (bsc#1172409)
- CVE-2020-12052: Fixed a cross site scripting vulnerability with the annotation
popup (bsc#1170657)
- CVE-2018-19039: Fixed an issue where a privileged user could
exfiltrate files (bsc#1115960)
- CVE-2020-11110: Fixed a stored cross site scripting vulnerability. (bsc#1174583)
- CVE-2020-24303: Fixed a cross site scripting vulnerability in a query alias for
ElasticSearch datasources (bsc#1178243)
kibana:
- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the HashTable
implementation, which could cause a denial of service. (bsc#1044849)
- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL fields.
(bsc#1044849)
- CVE-2020-10743: Fixed a clickjacking issue because X-Frame-Option was not used
by default. (bsc#1171909)
python-Django:
- CVE-2021-23336: Fixed a web cache poisoning via django.utils.http.limited_parse_qsl().
(bsc#1182433)
- CVE-2021-28658: Fixed a directory traversal via uploaded files. (bsc#1184148)
- CVE-2021-31542: Fixed a directory traversal via uploaded files with suitably crafted
file names. (bsc#1185623)
- CVE-2021-33203: Fixed potential path-traversal via admindocs' TemplateDetailView.
(bsc#1186608)
- CVE-2021-33571: Tighten validator checks to not allow leading zeros in IPv4 addresses,
which potentially leads to further attacks. (bsc#1186611)
python-py:
- CVE-2020-29651: Fixed a denial of service via regular expressions. (bsc#1179805)
python-pysaml2:
- CVE-2021-21238: Fixed improper verification of cryptographic signatures for signed
SAML documents. (bsc#1181277)
- CVE-2021-21239: Fixed improper verification of cryptographic signatures when using
CryptoBackendXmlSec1(). (bsc#1181278)
rubygem-activerecord-session_store:
- CVE-2019-25025: Fixed a timing attacks targeting the session id which could allow
an attack to hijack sessions. (bsc#1183174)
Non-security changes included in this update:
Changes in ardana-neutron:
- Update to version 9.0+git.1615223676.777f0b3:
* Allow users to stop monitoring rootwrap daemon (bsc#1182317)
Changes in ardana-swift:
- Update to version 9.0+git.1618235096.90974ed:
* Run swiftlm-scan in the UTC timezone (bsc#1181690)
Changes in cassandra:
- update to 3.11.10 (bsc#1181689, CVE-2020-17516)
* Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)
* Reduce amount of allocations during batch statement execution (CASSANDRA-16201)
* Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)
* Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)
* Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)
* SASI's `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)
* Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)
* Improve empty hint file handling during startup (CASSANDRA-16162)
* Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)
* Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)
* Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)
* Synchronize transaction logs for JBOD (CASSANDRA-16225)
* Fix the counting of cells per partition (CASSANDRA-16259)
* Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)
* Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)
* Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)
* Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)
* Remove the SEPExecutor blocking behavior (CASSANDRA-16186)
* Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)
* Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)
* Wait for schema agreement when bootstrapping (CASSANDRA-15158)
* Fix the histogram merge of the table metrics (CASSANDRA-16259)
* Synchronize Keyspace instance store/clear (CASSANDRA-16210)
* Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)
* Fix memory leak in CompressedChunkReader (CASSANDRA-15880)
* Don't attempt value skipping with mixed version cluster (CASSANDRA-15833)
* Avoid failing compactions with very large partitions (CASSANDRA-15164)
* Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)
* Fix OOM when terminating repair session (CASSANDRA-15902)
* Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)
* Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)
* Handle unexpected columns due to schema races (CASSANDRA-15899)
* Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)
* Package tools/bin scripts as executable (CASSANDRA-16151)
* Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)
* Correctly interpret SASI's `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)
* Fix short read protection for GROUP BY queries (CASSANDRA-15459)
* Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)
Merged from 3.0:
* Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)
* Fix gossip shutdown order (CASSANDRA-15816)
* Remove broken 'defrag-on-read' optimization (CASSANDRA-15432)
* Check for endpoint collision with hibernating nodes (CASSANDRA-14599)
* Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)
* stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)
* Forbid altering UDTs used in partition keys (CASSANDRA-15933)
* Fix empty/null json string representation (CASSANDRA-15896)
* 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)
* Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)
Merged from 2.2:
* Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)
* Only allow strings to be passed to JMX authentication (CASSANDRA-16077)
* Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)
* Upgrade Jackson to 2.9.10 (CASSANDRA-15867)
* Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)
* Allow sstableloader to use SSL on the native port (CASSANDRA-14904)
* Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)
* Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)
* Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)
* Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)
* Add token to tombstone warning and error messages (CASSANDRA-15890)
* Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)
* Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)
* Fix replica-side filtering returning stale data with CL > ONE (CASSANDRA-8272, CASSANDRA-8273)
* Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)
* Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)
* EmptyType doesn't override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)
* Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)
* Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)
* liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)
* Fix Debian init start/stop (CASSANDRA-15770)
* Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)
* Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)
* Allow selecting static column only when querying static index (CASSANDRA-14242)
* cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)
* Don't skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)
* Memtable memory allocations may deadlock (CASSANDRA-15367)
* Run evictFromMembership in GossipStage (CASSANDRA-15592)
* Fix nomenclature of allow and deny lists (CASSANDRA-15862)
* Remove generated files from source artifact (CASSANDRA-15849)
* Remove duplicated tools binaries from tarballs (CASSANDRA-15768)
* Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)
* Disable JMX rebinding (CASSANDRA-15653)
* Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)
* Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)
* Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)
* Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)
* Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)
* Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)
* Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)
* Fix SELECT JSON formatting for the 'duration' type (CASSANDRA-15075)
* Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)
* Update nodetool help stop output (CASSANDRA-15401)
* Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)
* Include updates to static column in mutation size calculations (CASSANDRA-15293)
* Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)
* GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)
* Fix sstabledump's position key value when partitions have multiple rows (CASSANDRA-14721)
* Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)
* Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11
(CASSANDRA-15441)
* Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)
* Fix various data directory prefix matching issues (CASSANDRA-13974)
* Minimize clustering values in metadata collector (CASSANDRA-15400)
* Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)
* validate value sizes in LegacyLayout (CASSANDRA-15373)
* Ensure that tracing doesn't break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)
* Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)
* Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)
* Fix race condition when setting bootstrap flags (CASSANDRA-14878)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SELECT JSON output for empty blobs (CASSANDRA-15435)
* In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)
* In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)
* Make sure user defined compaction transactions are always closed (CASSANDRA-15123)
* Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)
* Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)
* Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)
* Add ability to cap max negotiable protocol version (CASSANDRA-15193)
* Gossip tokens on startup if available (CASSANDRA-15335)
* Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)
* Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)
* Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)
* Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)
* Filter sstables earlier when running cleanup (CASSANDRA-15100)
* Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)
* Avoid updating unchanged gossip states (CASSANDRA-15097)
* Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)
* Prevent client requests from blocking on executor task queue (CASSANDRA-15013)
* Toughen up column drop/recreate type validations (CASSANDRA-15204)
* LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)
* Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)
* Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)
* Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)
* Handle paging states serialized with a different version than the session's (CASSANDRA-15176)
* Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)
* Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)
* Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)
* Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)
* Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)
* Fix mixed mode partition range scans with limit (CASSANDRA-15072)
* cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)
* Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)
* Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)
* Improve `nodetool status -r` speed (CASSANDRA-14847)
* Improve merkle tree size and time on heap (CASSANDRA-14096)
* Add missing commands to nodetool_completion (CASSANDRA-14916)
* Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)
* Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)
* Handle exceptions during authentication/authorization (CASSANDRA-15041)
* Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)
* Fix index summary redistribution cancellation (CASSANDRA-15045)
* Fixing invalid CQL in security documentation (CASSANDRA-15020)
* Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)
* Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)
* Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)
* Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser
* Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)
* If SizeEstimatesRecorder misses a 'onDropTable' notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)
* Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)
* Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)
* Fix cassandra-stress write hang with default options (CASSANDRA-14616)
* Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)
* Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)
* Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)
* RangeTombstoneList doesn't properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)
* Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)
* Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)
* Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)
* Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)
* Move TWCS message 'No compaction necessary for bucket size' to Trace level (CASSANDRA-14884)
* Sstable min/max metadata can cause data loss (CASSANDRA-14861)
* Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)
* Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)
* Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)
* Reverse order reads can return incomplete results (CASSANDRA-14803)
* Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)
* Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)
* DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)
* Fix corrupted collection deletions for dropped columns in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)
* Fix corrupted static collection deletions in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)
* Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)
* Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)
* Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)
* Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)
* sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)
* Fix reading columns with non-UTF names from schema (CASSANDRA-14468)
* Don't enable client transports when bootstrap is pending (CASSANDRA-14525)
* MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)
* Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)
* Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)
* Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)
Changes in crowbar-openstack:
- Update to version 6.0+git.1616146717.a89ae0f4e:
* monasca: restart Kibana on update (bsc#1044849)
Changes in grafana
- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)
* Prevent unauthenticated remote attackers from causing a DoS through the
snapshots API.
Changes in kibana:
- Ensure /etc/sysconfig/kibana is present
- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, ESA-2017-16)
* [4.6] ignore forked code for babel transpile build phase (#13483)
* Allow more than match queries in custom filters (#8614) (#10857)
* [state] don't make extra $location.replace() calls (#9954)
* [optimizer] move to querystring-browser package for up-to-date api
* [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls
* server: refactor log_interceptor to be more DRY (#9617)
* server: downgrade ECANCELED logs to debug (#9616)
* server: do not treat logged warnings as errors (#8746) (#9610)
* [server/logger] downgrade EPIPE errors to debug level (#9023)
* Add basepath when redirecting from a trailling slash (#9035)
* [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)
* [server/shortUrl] validate urls before shortening them
- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)
* This fixes an XSS vulnerability in URL fields
- Remove %dir declaration from /opt/kibana/optimize to ensure
no files owned by root end up in there
- Exclude /opt/kibana/optimize from %fdupes
- Restart service on upgrade
- Do not copy LICENSE.txt and README.txt to /opt/kibana
- Fix rpmlint warnings/errors
- Switch to explicit patch application
- Fix source URL
- Fix logic for systemd/systemv detection
- Add 0001-Configurable-custom-response-headers-for-server.patch
(bsc#1171909, CVE-2020-10743)
- Added kibana.yml symlink (bsc#1048688, FATE#323204)
Changes in openstack-dashboard:
- Update to version horizon-14.1.1.dev11:
* Consume tempest-horizon from PyPI release
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev17:
* Remove lower-constraints job
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev17:
* Remove lower-constraints job
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev164:
* Schedule networks to new segments if needed
- Update to version neutron-13.0.8.dev162:
* Fix invalid JSON generated by quota details
- Update to version neutron-13.0.8.dev160:
* Fix deletion of rfp interfaces when router is re-enabled
- Update to version neutron-13.0.8.dev159:
* [OVS FW] Allow egress ICMPv6 only for know addresses
* [OVS FW] Clean conntrack entries with mark == CT\_MARK\_INVALID
- Update to version neutron-13.0.8.dev155:
* Fix removal of dvr-src mac flows when non-gateway port on router is deleted
- Update to version neutron-13.0.8.dev153:
* Add some wait time between stopping and starting again ovsdb monitor
* Workaround for TCP checksum issue with ovs-dpdk and veth pair
- Update to version neutron-13.0.8.dev149:
* Fix wrong packet\_type set for IPv6 GRE tunnels in OVS
- Update to version neutron-13.0.8.dev148:
* Fix losses of ovs flows when ovs is restarted
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev164:
* Schedule networks to new segments if needed
- Update to version neutron-13.0.8.dev162:
* Fix invalid JSON generated by quota details
- Update to version neutron-13.0.8.dev160:
* Fix deletion of rfp interfaces when router is re-enabled
- Update to version neutron-13.0.8.dev159:
* [OVS FW] Allow egress ICMPv6 only for know addresses
* [OVS FW] Clean conntrack entries with mark == CT\_MARK\_INVALID
- Update to version neutron-13.0.8.dev155:
* Fix removal of dvr-src mac flows when non-gateway port on router is deleted
- Update to version neutron-13.0.8.dev153:
* Add some wait time between stopping and starting again ovsdb monitor
* Workaround for TCP checksum issue with ovs-dpdk and veth pair
- Update to version neutron-13.0.8.dev149:
* Fix wrong packet\_type set for IPv6 GRE tunnels in OVS
- Update to version neutron-13.0.8.dev148:
* Fix losses of ovs flows when ovs is restarted
Changes in openstack-neutron-gbp:
- Update to version group-based-policy-12.0.1.dev29:
* gbp-validate: Tenant and resource level scoping
2014.2.0rc1
- Update to version group-based-policy-12.0.1.dev27:
* Import data\_utils from the new location
- Update to version group-based-policy-12.0.1.dev26:
* Add SNAT port's Mac Address to the host\_snat\_ips dictionary
- Update to version group-based-policy-12.0.1.dev25:
* Add support for victoria
2014.2.rc1
- Update to version group-based-policy-12.0.1.dev24:
* Fix deletion of SVI networks
- Update to version group-based-policy-12.0.1.dev23:
* Allow per-port qos configuration on dhcp port
2014.2rc1
- Update to version group-based-policy-12.0.1.dev22:
* Add connectivity parameter to driver
* [AIM] Fix ERSPAN extension
2014.2.rc1
- Update to version group-based-policy-12.0.1.dev19:
* Fix exception with cleanup
2014.2.0rc1
- Update to version group-based-policy-12.0.1.dev18:
* Add workaround to get\_subnets
Changes in openstack-nova:
- Update to version nova-18.3.1.dev82:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
* Change default num\_retries for glance to 3
Changes in openstack-nova:
- Update to version nova-18.3.1.dev82:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
* Change default num\_retries for glance to 3
Changes in python-Django1:
- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)
* Fixed potential path-traversal via admindocs' TemplateDetailView.
- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)
* Prevented leading zeros in IPv4 addresses.
- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)
* Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file
uploads.
- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)
* Fixed potential directory-traversal via uploaded files
- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)
* Fixed web cache poisoning via django.utils.http.limited_parse_qsl()
Changes in python-py:
- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)
* svnwc: fix regular expression vulnerable to DoS in blame
functionality
Changes in python-pysaml2:
- Fix patches (SOC-11453)
* 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch
- rename saml2.xml to saml2.samlxml to avoid overriding
the xml module in the system module path
- add missing __init__.py files
- add missing saml2/data package to setup.py
* 0007-Make-previous-commits-python2-compatible.patch so as not to
- Adjust to saml2.xml to saml2.samlxml changes
- Fix a few more syntax errors and Python2-isms.
- Fix CVE-2021-21238, bsc#1181277 with
0002-Strengthen-XSW-tests.patch ,
0003-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,
0004-Add-xsd-schemas.patch ,
0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .
This adds a dependency on python-xmlschema, which depends on
python-elementpath, thus both need to be added for this to work.
The used python-xmlschema needs to support the sandbox argument
which was added in 1.2.0 and refined in 1.2.1, but that version
doesn't support python2, so a patched version that does both is
needed.
Add 0007-Make-previous-commits-python2-compatible.patch to
not add a dependency on reportlib_resources and make other
changes python2 compatible.
. Fix CVE-2021-21239, bsc#1181278 with
0006-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch
Changes in python-xmlschema:
- Add 3 patches to backport sandbox argument, which is needed by a security fix
in python-pysaml2 and one patch to make backport python2 compatible.
- Upstream url changed
- Add rpmlintrc to make it work on Leap 42.3
- Update to 1.0.18:
* Fix for *ModelVisitor.iter_unordered_content()*
* Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode
* Fixed validation tests with all converters
* Added UnorderedConverter to validation tests
- Update to 1.0.17:
* Enhancement of validation-only speed (~15%)
* Added *is_valid()* and *iter_errors()* to module API
- Update to 1.0.16:
* Improved XMLResource class for working with compressed files
* Fix for validation with XSD wildcards and 'lax' process content
* Fix ambiguous items validation for xs:choice and xs:sequence models
- Handle UnicodeDecodeErrors during build process
- Update to 1.0.15:
* Improved XPath 2.0 bindings
* Added logging for schema initialization and building (handled with argument loglevel)
* Update encoding of collapsed contents with a new model based reordering method
* Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)
* Fixed half of failed W3C instance tests (remain 255 over 15344 tests)
- Initial commit, needed by pytest 5.1.2
Changes in python-elementpath:
- Update to 1.3.1:
* Improved schema proxy
* Improved XSD type matching using paths
* Cached parent path for XPathContext (only Python 3)
* Improve typed selection with TypedAttribute and TypedElement named-tuples
* Add iter_results to XPathContext
* Remove XMLSchemaProxy from package
* Fix descendant shortcut operator '//'
* Fix text() function
* Fix typed select of '(name)' token
* Fix 24-hour time for DateTime
- Skip test_hashing to fix 32bit builds
- Initial commit needed by python-xmlschema
Changes in rubygem-activerecord-session_store:
- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)
* This requires CVE-2019-16782.patch to be included in
rubygem-actionpack-4_2 to work correctly.
Changes in venv-openstack-keystone
- Add python-xmlschema and python-elementpath for new python-pysaml2 version.
Patchnames
SUSE-2021-1962,SUSE-OpenStack-Cloud-9-2021-1962,SUSE-OpenStack-Cloud-Crowbar-9-2021-1962
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone contains the following fixes:\n\nSecurity fixes included in this update:\n\ncassandra:\n- CVE-2020-17516: Fixed an issue where encryption between nodes was not enforced\n correctly for certain internode_encryption settings (bsc#1181689)\n\ngrafana:\n- CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed multiple cross\n site scripting vulnerabilities in the dashboard. (bsc#1172450)\n- CVE-2021-27358: Fixed a denial of service via remote API call. (bsc#1183803)\n- CVE-2019-15043: Fixed a denial of service by an unauthenticated user\n in the snapshot HTTP API (bsc#1148383)\n- CVE-2020-13379: Fixed an information leak to unauthenticated users. (bsc#1172409)\n- CVE-2020-12052: Fixed a cross site scripting vulnerability with the annotation\n popup (bsc#1170657)\n- CVE-2018-19039: Fixed an issue where a privileged user could\n exfiltrate files (bsc#1115960)\n- CVE-2020-11110: Fixed a stored cross site scripting vulnerability. (bsc#1174583)\n- CVE-2020-24303: Fixed a cross site scripting vulnerability in a query alias for\n ElasticSearch datasources (bsc#1178243)\n\nkibana:\n- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the HashTable\n implementation, which could cause a denial of service. (bsc#1044849)\n- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL fields.\n (bsc#1044849)\n- CVE-2020-10743: Fixed a clickjacking issue because X-Frame-Option was not used\n by default. (bsc#1171909)\n\npython-Django:\n- CVE-2021-23336: Fixed a web cache poisoning via django.utils.http.limited_parse_qsl().\n (bsc#1182433)\n- CVE-2021-28658: Fixed a directory traversal via uploaded files. (bsc#1184148)\n- CVE-2021-31542: Fixed a directory traversal via uploaded files with suitably crafted\n file names. (bsc#1185623)\n- CVE-2021-33203: Fixed potential path-traversal via admindocs\u0027 TemplateDetailView.\n (bsc#1186608)\n- CVE-2021-33571: Tighten validator checks to not allow leading zeros in IPv4 addresses,\n which potentially leads to further attacks. (bsc#1186611)\n\npython-py:\n- CVE-2020-29651: Fixed a denial of service via regular expressions. (bsc#1179805)\n\npython-pysaml2:\n- CVE-2021-21238: Fixed improper verification of cryptographic signatures for signed\n SAML documents. (bsc#1181277)\n- CVE-2021-21239: Fixed improper verification of cryptographic signatures when using\n CryptoBackendXmlSec1(). (bsc#1181278)\n\nrubygem-activerecord-session_store:\n- CVE-2019-25025: Fixed a timing attacks targeting the session id which could allow\n an attack to hijack sessions. (bsc#1183174)\n\n\nNon-security changes included in this update:\n\nChanges in ardana-neutron:\n- Update to version 9.0+git.1615223676.777f0b3:\n * Allow users to stop monitoring rootwrap daemon (bsc#1182317)\n\nChanges in ardana-swift:\n- Update to version 9.0+git.1618235096.90974ed:\n * Run swiftlm-scan in the UTC timezone (bsc#1181690)\n\nChanges in cassandra:\n- update to 3.11.10 (bsc#1181689, CVE-2020-17516) \n * Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)\n * Reduce amount of allocations during batch statement execution (CASSANDRA-16201)\n * Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)\n * Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)\n * Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)\n * SASI\u0027s `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)\n * Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)\n * Improve empty hint file handling during startup (CASSANDRA-16162)\n * Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)\n * Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)\n * Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)\n * Synchronize transaction logs for JBOD (CASSANDRA-16225)\n * Fix the counting of cells per partition (CASSANDRA-16259)\n * Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)\n * Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)\n * Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)\n * Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)\n * Remove the SEPExecutor blocking behavior (CASSANDRA-16186)\n * Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)\n * Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)\n * Wait for schema agreement when bootstrapping (CASSANDRA-15158)\n * Fix the histogram merge of the table metrics (CASSANDRA-16259)\n * Synchronize Keyspace instance store/clear (CASSANDRA-16210)\n * Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)\n * Fix memory leak in CompressedChunkReader (CASSANDRA-15880)\n * Don\u0027t attempt value skipping with mixed version cluster (CASSANDRA-15833)\n * Avoid failing compactions with very large partitions (CASSANDRA-15164)\n * Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)\n * Fix OOM when terminating repair session (CASSANDRA-15902)\n * Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)\n * Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)\n * Handle unexpected columns due to schema races (CASSANDRA-15899)\n * Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)\n * Package tools/bin scripts as executable (CASSANDRA-16151)\n * Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)\n * Correctly interpret SASI\u0027s `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)\n * Fix short read protection for GROUP BY queries (CASSANDRA-15459)\n * Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)\nMerged from 3.0:\n * Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)\n * Fix gossip shutdown order (CASSANDRA-15816)\n * Remove broken \u0027defrag-on-read\u0027 optimization (CASSANDRA-15432)\n * Check for endpoint collision with hibernating nodes (CASSANDRA-14599)\n * Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)\n * stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)\n * Forbid altering UDTs used in partition keys (CASSANDRA-15933)\n * Fix empty/null json string representation (CASSANDRA-15896)\n * 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)\n * Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)\nMerged from 2.2:\n * Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)\n * Only allow strings to be passed to JMX authentication (CASSANDRA-16077)\n * Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)\n * Upgrade Jackson to 2.9.10 (CASSANDRA-15867)\n * Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)\n * Allow sstableloader to use SSL on the native port (CASSANDRA-14904)\n * Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)\n * Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)\n * Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)\n * Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)\n * Add token to tombstone warning and error messages (CASSANDRA-15890)\n * Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)\n * Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)\n * Fix replica-side filtering returning stale data with CL \u003e ONE (CASSANDRA-8272, CASSANDRA-8273)\n * Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)\n * Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)\n * EmptyType doesn\u0027t override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)\n * Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)\n * Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)\n * liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)\n * Fix Debian init start/stop (CASSANDRA-15770)\n * Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)\n * Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)\n * Allow selecting static column only when querying static index (CASSANDRA-14242)\n * cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)\n * Don\u0027t skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)\n * Memtable memory allocations may deadlock (CASSANDRA-15367)\n * Run evictFromMembership in GossipStage (CASSANDRA-15592)\n * Fix nomenclature of allow and deny lists (CASSANDRA-15862)\n * Remove generated files from source artifact (CASSANDRA-15849)\n * Remove duplicated tools binaries from tarballs (CASSANDRA-15768)\n * Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)\n * Disable JMX rebinding (CASSANDRA-15653)\n * Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)\n * Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)\n * Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)\n * Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)\n * Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)\n * Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)\n * Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)\n * Fix SELECT JSON formatting for the \u0027duration\u0027 type (CASSANDRA-15075)\n * Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)\n * Update nodetool help stop output (CASSANDRA-15401)\n * Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)\n * Include updates to static column in mutation size calculations (CASSANDRA-15293)\n * Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)\n * GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)\n * Fix sstabledump\u0027s position key value when partitions have multiple rows (CASSANDRA-14721)\n * Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)\n * Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11\n (CASSANDRA-15441)\n * Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)\n * Fix various data directory prefix matching issues (CASSANDRA-13974)\n * Minimize clustering values in metadata collector (CASSANDRA-15400)\n * Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)\n * validate value sizes in LegacyLayout (CASSANDRA-15373)\n * Ensure that tracing doesn\u0027t break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)\n * Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)\n * Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)\n * Fix race condition when setting bootstrap flags (CASSANDRA-14878)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SELECT JSON output for empty blobs (CASSANDRA-15435)\n * In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)\n * In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)\n * Make sure user defined compaction transactions are always closed (CASSANDRA-15123)\n * Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)\n * Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)\n * Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)\n * Add ability to cap max negotiable protocol version (CASSANDRA-15193)\n * Gossip tokens on startup if available (CASSANDRA-15335)\n * Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)\n * Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)\n * Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)\n * Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)\n * Filter sstables earlier when running cleanup (CASSANDRA-15100)\n * Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)\n * Avoid updating unchanged gossip states (CASSANDRA-15097)\n * Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)\n * Prevent client requests from blocking on executor task queue (CASSANDRA-15013)\n * Toughen up column drop/recreate type validations (CASSANDRA-15204)\n * LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)\n * Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)\n * Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)\n * Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)\n * Handle paging states serialized with a different version than the session\u0027s (CASSANDRA-15176)\n * Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)\n * Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)\n * Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)\n * Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)\n * Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)\n * Fix mixed mode partition range scans with limit (CASSANDRA-15072)\n * cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)\n * Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)\n * Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)\n * Improve `nodetool status -r` speed (CASSANDRA-14847)\n * Improve merkle tree size and time on heap (CASSANDRA-14096)\n * Add missing commands to nodetool_completion (CASSANDRA-14916)\n * Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)\n * Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)\n * Handle exceptions during authentication/authorization (CASSANDRA-15041)\n * Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)\n * Fix index summary redistribution cancellation (CASSANDRA-15045)\n * Fixing invalid CQL in security documentation (CASSANDRA-15020)\n * Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)\n * Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)\n * Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)\n * Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser\n * Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)\n * If SizeEstimatesRecorder misses a \u0027onDropTable\u0027 notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)\n * Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)\n * Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)\n * Fix cassandra-stress write hang with default options (CASSANDRA-14616)\n * Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)\n * Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)\n * Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)\n * RangeTombstoneList doesn\u0027t properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)\n * Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)\n * Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)\n * Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)\n * Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)\n * Move TWCS message \u0027No compaction necessary for bucket size\u0027 to Trace level (CASSANDRA-14884)\n * Sstable min/max metadata can cause data loss (CASSANDRA-14861)\n * Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)\n * Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)\n * Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)\n * Reverse order reads can return incomplete results (CASSANDRA-14803)\n * Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)\n * Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)\n * DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)\n * Fix corrupted collection deletions for dropped columns in 3.0 \u003c-\u003e 2.{1,2} messages (CASSANDRA-14568)\n * Fix corrupted static collection deletions in 3.0 \u003c-\u003e 2.{1,2} messages (CASSANDRA-14568)\n * Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)\n * Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)\n * Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)\n * Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)\n * sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)\n * Fix reading columns with non-UTF names from schema (CASSANDRA-14468)\n * Don\u0027t enable client transports when bootstrap is pending (CASSANDRA-14525)\n * MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)\n * Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)\n * Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)\n * Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)\n\nChanges in crowbar-openstack:\n- Update to version 6.0+git.1616146717.a89ae0f4e:\n * monasca: restart Kibana on update (bsc#1044849)\n\nChanges in grafana\n- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)\n * Prevent unauthenticated remote attackers from causing a DoS through the\n snapshots API.\n\nChanges in kibana:\n- Ensure /etc/sysconfig/kibana is present\n\n- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, ESA-2017-16)\n * [4.6] ignore forked code for babel transpile build phase (#13483)\n * Allow more than match queries in custom filters (#8614) (#10857)\n * [state] don\u0027t make extra $location.replace() calls (#9954)\n * [optimizer] move to querystring-browser package for up-to-date api\n * [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls\n * server: refactor log_interceptor to be more DRY (#9617)\n * server: downgrade ECANCELED logs to debug (#9616)\n * server: do not treat logged warnings as errors (#8746) (#9610)\n * [server/logger] downgrade EPIPE errors to debug level (#9023)\n * Add basepath when redirecting from a trailling slash (#9035)\n * [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)\n * [server/shortUrl] validate urls before shortening them\n- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)\n * This fixes an XSS vulnerability in URL fields\n- Remove %dir declaration from /opt/kibana/optimize to ensure\n no files owned by root end up in there\n- Exclude /opt/kibana/optimize from %fdupes\n- Restart service on upgrade\n- Do not copy LICENSE.txt and README.txt to /opt/kibana\n- Fix rpmlint warnings/errors\n- Switch to explicit patch application\n- Fix source URL\n- Fix logic for systemd/systemv detection\n\n- Add 0001-Configurable-custom-response-headers-for-server.patch\n (bsc#1171909, CVE-2020-10743)\n\n- Added kibana.yml symlink (bsc#1048688, FATE#323204)\nChanges in openstack-dashboard:\n- Update to version horizon-14.1.1.dev11:\n * Consume tempest-horizon from PyPI release\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev17:\n * Remove lower-constraints job\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev17:\n * Remove lower-constraints job\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev164:\n * Schedule networks to new segments if needed\n\n- Update to version neutron-13.0.8.dev162:\n * Fix invalid JSON generated by quota details\n\n- Update to version neutron-13.0.8.dev160:\n * Fix deletion of rfp interfaces when router is re-enabled\n\n- Update to version neutron-13.0.8.dev159:\n * [OVS FW] Allow egress ICMPv6 only for know addresses\n * [OVS FW] Clean conntrack entries with mark == CT\\_MARK\\_INVALID\n\n- Update to version neutron-13.0.8.dev155:\n * Fix removal of dvr-src mac flows when non-gateway port on router is deleted\n\n- Update to version neutron-13.0.8.dev153:\n * Add some wait time between stopping and starting again ovsdb monitor\n * Workaround for TCP checksum issue with ovs-dpdk and veth pair\n\n- Update to version neutron-13.0.8.dev149:\n * Fix wrong packet\\_type set for IPv6 GRE tunnels in OVS\n\n- Update to version neutron-13.0.8.dev148:\n * Fix losses of ovs flows when ovs is restarted\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev164:\n * Schedule networks to new segments if needed\n\n- Update to version neutron-13.0.8.dev162:\n * Fix invalid JSON generated by quota details\n\n- Update to version neutron-13.0.8.dev160:\n * Fix deletion of rfp interfaces when router is re-enabled\n\n- Update to version neutron-13.0.8.dev159:\n * [OVS FW] Allow egress ICMPv6 only for know addresses\n * [OVS FW] Clean conntrack entries with mark == CT\\_MARK\\_INVALID\n\n- Update to version neutron-13.0.8.dev155:\n * Fix removal of dvr-src mac flows when non-gateway port on router is deleted\n\n- Update to version neutron-13.0.8.dev153:\n * Add some wait time between stopping and starting again ovsdb monitor\n * Workaround for TCP checksum issue with ovs-dpdk and veth pair\n\n- Update to version neutron-13.0.8.dev149:\n * Fix wrong packet\\_type set for IPv6 GRE tunnels in OVS\n\n- Update to version neutron-13.0.8.dev148:\n * Fix losses of ovs flows when ovs is restarted\n\nChanges in openstack-neutron-gbp:\n- Update to version group-based-policy-12.0.1.dev29:\n * gbp-validate: Tenant and resource level scoping\n 2014.2.0rc1\n\n- Update to version group-based-policy-12.0.1.dev27:\n * Import data\\_utils from the new location\n\n- Update to version group-based-policy-12.0.1.dev26:\n * Add SNAT port\u0027s Mac Address to the host\\_snat\\_ips dictionary\n\n- Update to version group-based-policy-12.0.1.dev25:\n * Add support for victoria\n 2014.2.rc1\n\n- Update to version group-based-policy-12.0.1.dev24:\n * Fix deletion of SVI networks\n\n- Update to version group-based-policy-12.0.1.dev23:\n * Allow per-port qos configuration on dhcp port\n 2014.2rc1\n\n- Update to version group-based-policy-12.0.1.dev22:\n * Add connectivity parameter to driver\n * [AIM] Fix ERSPAN extension\n 2014.2.rc1\n\n- Update to version group-based-policy-12.0.1.dev19:\n * Fix exception with cleanup\n 2014.2.0rc1\n\n- Update to version group-based-policy-12.0.1.dev18:\n * Add workaround to get\\_subnets\n\nChanges in openstack-nova:\n- Update to version nova-18.3.1.dev82:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n * Change default num\\_retries for glance to 3\n\nChanges in openstack-nova:\n- Update to version nova-18.3.1.dev82:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n * Change default num\\_retries for glance to 3\n\nChanges in python-Django1:\n- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)\n * Fixed potential path-traversal via admindocs\u0027 TemplateDetailView.\n- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)\n * Prevented leading zeros in IPv4 addresses.\n\n- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)\n * Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file\n uploads.\n\n- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)\n * Fixed potential directory-traversal via uploaded files\n\n- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)\n * Fixed web cache poisoning via django.utils.http.limited_parse_qsl()\n\n\nChanges in python-py:\n- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)\n * svnwc: fix regular expression vulnerable to DoS in blame\n functionality\n\nChanges in python-pysaml2:\n- Fix patches (SOC-11453)\n * 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch\n - rename saml2.xml to saml2.samlxml to avoid overriding\n the xml module in the system module path\n - add missing __init__.py files\n - add missing saml2/data package to setup.py\n * 0007-Make-previous-commits-python2-compatible.patch so as not to\n - Adjust to saml2.xml to saml2.samlxml changes\n - Fix a few more syntax errors and Python2-isms.\n\n- Fix CVE-2021-21238, bsc#1181277 with\n 0002-Strengthen-XSW-tests.patch ,\n 0003-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,\n 0004-Add-xsd-schemas.patch ,\n 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .\n This adds a dependency on python-xmlschema, which depends on\n python-elementpath, thus both need to be added for this to work.\n The used python-xmlschema needs to support the sandbox argument\n which was added in 1.2.0 and refined in 1.2.1, but that version\n doesn\u0027t support python2, so a patched version that does both is\n needed.\n Add 0007-Make-previous-commits-python2-compatible.patch to\n not add a dependency on reportlib_resources and make other\n changes python2 compatible.\n. Fix CVE-2021-21239, bsc#1181278 with\n 0006-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch\n\nChanges in python-xmlschema:\n\n- Add 3 patches to backport sandbox argument, which is needed by a security fix\n in python-pysaml2 and one patch to make backport python2 compatible.\n- Upstream url changed\n- Add rpmlintrc to make it work on Leap 42.3\n- Update to 1.0.18:\n * Fix for *ModelVisitor.iter_unordered_content()*\n * Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode\n * Fixed validation tests with all converters\n * Added UnorderedConverter to validation tests\n- Update to 1.0.17:\n * Enhancement of validation-only speed (~15%)\n * Added *is_valid()* and *iter_errors()* to module API\n- Update to 1.0.16:\n * Improved XMLResource class for working with compressed files\n * Fix for validation with XSD wildcards and \u0027lax\u0027 process content\n * Fix ambiguous items validation for xs:choice and xs:sequence models\n\n- Handle UnicodeDecodeErrors during build process\n\n- Update to 1.0.15:\n * Improved XPath 2.0 bindings\n * Added logging for schema initialization and building (handled with argument loglevel)\n * Update encoding of collapsed contents with a new model based reordering method\n * Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)\n * Fixed half of failed W3C instance tests (remain 255 over 15344 tests)\n\n- Initial commit, needed by pytest 5.1.2\nChanges in python-elementpath:\n\n- Update to 1.3.1:\n * Improved schema proxy\n * Improved XSD type matching using paths\n * Cached parent path for XPathContext (only Python 3)\n * Improve typed selection with TypedAttribute and TypedElement named-tuples\n * Add iter_results to XPathContext\n * Remove XMLSchemaProxy from package\n * Fix descendant shortcut operator \u0027//\u0027\n * Fix text() function\n * Fix typed select of \u0027(name)\u0027 token\n * Fix 24-hour time for DateTime\n\n- Skip test_hashing to fix 32bit builds\n\n- Initial commit needed by python-xmlschema\nChanges in rubygem-activerecord-session_store:\n- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)\n * This requires CVE-2019-16782.patch to be included in\n rubygem-actionpack-4_2 to work correctly.\n\nChanges in venv-openstack-keystone\n- Add python-xmlschema and python-elementpath for new python-pysaml2 version.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-1962,SUSE-OpenStack-Cloud-9-2021-1962,SUSE-OpenStack-Cloud-Crowbar-9-2021-1962",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1962-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:1962-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20211962-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:1962-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-June/009001.html"
},
{
"category": "self",
"summary": "SUSE Bug 1044849",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "self",
"summary": "SUSE Bug 1048688",
"url": "https://bugzilla.suse.com/1048688"
},
{
"category": "self",
"summary": "SUSE Bug 1115960",
"url": "https://bugzilla.suse.com/1115960"
},
{
"category": "self",
"summary": "SUSE Bug 1148383",
"url": "https://bugzilla.suse.com/1148383"
},
{
"category": "self",
"summary": "SUSE Bug 1170657",
"url": "https://bugzilla.suse.com/1170657"
},
{
"category": "self",
"summary": "SUSE Bug 1171909",
"url": "https://bugzilla.suse.com/1171909"
},
{
"category": "self",
"summary": "SUSE Bug 1172409",
"url": "https://bugzilla.suse.com/1172409"
},
{
"category": "self",
"summary": "SUSE Bug 1172450",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "self",
"summary": "SUSE Bug 1174583",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "self",
"summary": "SUSE Bug 1178243",
"url": "https://bugzilla.suse.com/1178243"
},
{
"category": "self",
"summary": "SUSE Bug 1179805",
"url": "https://bugzilla.suse.com/1179805"
},
{
"category": "self",
"summary": "SUSE Bug 1181277",
"url": "https://bugzilla.suse.com/1181277"
},
{
"category": "self",
"summary": "SUSE Bug 1181278",
"url": "https://bugzilla.suse.com/1181278"
},
{
"category": "self",
"summary": "SUSE Bug 1181689",
"url": "https://bugzilla.suse.com/1181689"
},
{
"category": "self",
"summary": "SUSE Bug 1181690",
"url": "https://bugzilla.suse.com/1181690"
},
{
"category": "self",
"summary": "SUSE Bug 1182317",
"url": "https://bugzilla.suse.com/1182317"
},
{
"category": "self",
"summary": "SUSE Bug 1182433",
"url": "https://bugzilla.suse.com/1182433"
},
{
"category": "self",
"summary": "SUSE Bug 1183174",
"url": "https://bugzilla.suse.com/1183174"
},
{
"category": "self",
"summary": "SUSE Bug 1183803",
"url": "https://bugzilla.suse.com/1183803"
},
{
"category": "self",
"summary": "SUSE Bug 1184148",
"url": "https://bugzilla.suse.com/1184148"
},
{
"category": "self",
"summary": "SUSE Bug 1185623",
"url": "https://bugzilla.suse.com/1185623"
},
{
"category": "self",
"summary": "SUSE Bug 1186608",
"url": "https://bugzilla.suse.com/1186608"
},
{
"category": "self",
"summary": "SUSE Bug 1186611",
"url": "https://bugzilla.suse.com/1186611"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11481 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11481/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11499 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18623 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18624 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18624/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18625 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-19039 page",
"url": "https://www.suse.com/security/cve/CVE-2018-19039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-15043 page",
"url": "https://www.suse.com/security/cve/CVE-2019-15043/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25025 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10743 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-11110 page",
"url": "https://www.suse.com/security/cve/CVE-2020-11110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12052 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13379 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-17516 page",
"url": "https://www.suse.com/security/cve/CVE-2020-17516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-24303 page",
"url": "https://www.suse.com/security/cve/CVE-2020-24303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-29651 page",
"url": "https://www.suse.com/security/cve/CVE-2020-29651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21238 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21239 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23336 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23336/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27358 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27358/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28658 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31542 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31542/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33203 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33571 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33571/"
}
],
"title": "Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone",
"tracking": {
"current_release_date": "2021-06-11T13:13:53Z",
"generator": {
"date": "2021-06-11T13:13:53Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:1962-1",
"initial_release_date": "2021-06-11T13:13:53Z",
"revision_history": [
{
"date": "2021-06-11T13:13:53Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-3.3.3.aarch64",
"product": {
"name": "cassandra-3.11.10-3.3.3.aarch64",
"product_id": "cassandra-3.11.10-3.3.3.aarch64"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-3.3.3.aarch64",
"product": {
"name": "cassandra-javadoc-3.11.10-3.3.3.aarch64",
"product_id": "cassandra-javadoc-3.11.10-3.3.3.aarch64"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-3.3.3.aarch64",
"product": {
"name": "cassandra-tools-3.11.10-3.3.3.aarch64",
"product_id": "cassandra-tools-3.11.10-3.3.3.aarch64"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.aarch64",
"product": {
"name": "grafana-6.7.4-3.23.2.aarch64",
"product_id": "grafana-6.7.4-3.23.2.aarch64"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.aarch64",
"product": {
"name": "kibana-4.6.6-4.9.2.aarch64",
"product_id": "kibana-4.6.6-4.9.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"product": {
"name": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"product_id": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch"
}
},
{
"category": "product_version",
"name": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"product": {
"name": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"product_id": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch"
}
},
{
"category": "product_version",
"name": "cassandra-kit-3.11.10-3.3.2.noarch",
"product": {
"name": "cassandra-kit-3.11.10-3.3.2.noarch",
"product_id": "cassandra-kit-3.11.10-3.3.2.noarch"
}
},
{
"category": "product_version",
"name": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"product": {
"name": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"product_id": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"product_id": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch",
"product_id": "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product": {
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product_id": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch",
"product": {
"name": "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch",
"product_id": "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-network-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-network-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-network-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-test-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-test-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-test-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "python-Django1-1.11.29-3.25.1.noarch",
"product": {
"name": "python-Django1-1.11.29-3.25.1.noarch",
"product_id": "python-Django1-1.11.29-3.25.1.noarch"
}
},
{
"category": "product_version",
"name": "python-elementpath-1.3.1-1.3.2.noarch",
"product": {
"name": "python-elementpath-1.3.1-1.3.2.noarch",
"product_id": "python-elementpath-1.3.1-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"product_id": "python-horizon-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"product_id": "python-ironic-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"product_id": "python-neutron-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product": {
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product_id": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "python-nova-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "python-nova-18.3.1~dev82-3.37.6.noarch",
"product_id": "python-nova-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"product_id": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "python-py-1.5.4-3.3.2.noarch",
"product": {
"name": "python-py-1.5.4-3.3.2.noarch",
"product_id": "python-py-1.5.4-3.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python-pysaml2-4.5.0-4.6.2.noarch",
"product": {
"name": "python-pysaml2-4.5.0-4.6.2.noarch",
"product_id": "python-pysaml2-4.5.0-4.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python-xmlschema-1.0.18-1.3.2.noarch",
"product": {
"name": "python-xmlschema-1.0.18-1.3.2.noarch",
"product_id": "python-xmlschema-1.0.18-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-Django1-1.11.29-3.25.1.noarch",
"product": {
"name": "python3-Django1-1.11.29-3.25.1.noarch",
"product_id": "python3-Django1-1.11.29-3.25.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-elementpath-1.3.1-1.3.2.noarch",
"product": {
"name": "python3-elementpath-1.3.1-1.3.2.noarch",
"product_id": "python3-elementpath-1.3.1-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-py-1.5.4-3.3.2.noarch",
"product": {
"name": "python3-py-1.5.4-3.3.2.noarch",
"product_id": "python3-py-1.5.4-3.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-pysaml2-4.5.0-4.6.2.noarch",
"product": {
"name": "python3-pysaml2-4.5.0-4.6.2.noarch",
"product_id": "python3-pysaml2-4.5.0-4.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-xmlschema-1.0.18-1.3.2.noarch",
"product": {
"name": "python3-xmlschema-1.0.18-1.3.2.noarch",
"product_id": "python3-xmlschema-1.0.18-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"product": {
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"product_id": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"product": {
"name": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"product_id": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"product": {
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"product_id": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"product": {
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"product_id": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"product": {
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"product_id": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"product": {
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"product_id": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"product": {
"name": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"product_id": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"product": {
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"product_id": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"product": {
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"product_id": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"product": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"product_id": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"product": {
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"product_id": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"product": {
"name": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"product_id": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"product": {
"name": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"product_id": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"product": {
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"product_id": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"product": {
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"product_id": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"product": {
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"product_id": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-3.3.3.ppc64le",
"product": {
"name": "cassandra-3.11.10-3.3.3.ppc64le",
"product_id": "cassandra-3.11.10-3.3.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-3.3.3.ppc64le",
"product": {
"name": "cassandra-javadoc-3.11.10-3.3.3.ppc64le",
"product_id": "cassandra-javadoc-3.11.10-3.3.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-3.3.3.ppc64le",
"product": {
"name": "cassandra-tools-3.11.10-3.3.3.ppc64le",
"product_id": "cassandra-tools-3.11.10-3.3.3.ppc64le"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.ppc64le",
"product": {
"name": "grafana-6.7.4-3.23.2.ppc64le",
"product_id": "grafana-6.7.4-3.23.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.ppc64le",
"product": {
"name": "kibana-4.6.6-4.9.2.ppc64le",
"product_id": "kibana-4.6.6-4.9.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.s390x",
"product": {
"name": "grafana-6.7.4-3.23.2.s390x",
"product_id": "grafana-6.7.4-3.23.2.s390x"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.s390x",
"product": {
"name": "kibana-4.6.6-4.9.2.s390x",
"product_id": "kibana-4.6.6-4.9.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-3.3.3.x86_64",
"product": {
"name": "cassandra-3.11.10-3.3.3.x86_64",
"product_id": "cassandra-3.11.10-3.3.3.x86_64"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-3.3.3.x86_64",
"product": {
"name": "cassandra-javadoc-3.11.10-3.3.3.x86_64",
"product_id": "cassandra-javadoc-3.11.10-3.3.3.x86_64"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-3.3.3.x86_64",
"product": {
"name": "cassandra-tools-3.11.10-3.3.3.x86_64",
"product_id": "cassandra-tools-3.11.10-3.3.3.x86_64"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.x86_64",
"product": {
"name": "grafana-6.7.4-3.23.2.x86_64",
"product_id": "grafana-6.7.4-3.23.2.x86_64"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.x86_64",
"product": {
"name": "kibana-4.6.6-4.9.2.x86_64",
"product_id": "kibana-4.6.6-4.9.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch"
},
"product_reference": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch"
},
"product_reference": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-tools-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-tools-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-3.23.2.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64"
},
"product_reference": "grafana-6.7.4-3.23.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kibana-4.6.6-4.9.2.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64"
},
"product_reference": "kibana-4.6.6-4.9.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Django1-1.11.29-3.25.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch"
},
"product_reference": "python-Django1-1.11.29-3.25.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch"
},
"product_reference": "python-elementpath-1.3.1-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "python-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-py-1.5.4-3.3.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch"
},
"product_reference": "python-py-1.5.4-3.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.5.0-4.6.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch"
},
"product_reference": "python-pysaml2-4.5.0-4.6.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-xmlschema-1.0.18-1.3.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch"
},
"product_reference": "python-xmlschema-1.0.18-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch"
},
"product_reference": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch"
},
"product_reference": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch"
},
"product_reference": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch"
},
"product_reference": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch"
},
"product_reference": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch"
},
"product_reference": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch"
},
"product_reference": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch"
},
"product_reference": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch"
},
"product_reference": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch"
},
"product_reference": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch"
},
"product_reference": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch"
},
"product_reference": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch"
},
"product_reference": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch"
},
"product_reference": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch"
},
"product_reference": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch"
},
"product_reference": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch"
},
"product_reference": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-tools-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-tools-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch"
},
"product_reference": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-3.23.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64"
},
"product_reference": "grafana-6.7.4-3.23.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kibana-4.6.6-4.9.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64"
},
"product_reference": "kibana-4.6.6-4.9.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Django1-1.11.29-3.25.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch"
},
"product_reference": "python-Django1-1.11.29-3.25.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch"
},
"product_reference": "python-elementpath-1.3.1-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "python-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-py-1.5.4-3.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch"
},
"product_reference": "python-py-1.5.4-3.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.5.0-4.6.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch"
},
"product_reference": "python-pysaml2-4.5.0-4.6.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-xmlschema-1.0.18-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch"
},
"product_reference": "python-xmlschema-1.0.18-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
},
"product_reference": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-11481",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11481"
}
],
"notes": [
{
"category": "general",
"text": "Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11481",
"url": "https://www.suse.com/security/cve/CVE-2017-11481"
},
{
"category": "external",
"summary": "SUSE Bug 1044849 for CVE-2017-11481",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "external",
"summary": "SUSE Bug 1072315 for CVE-2017-11481",
"url": "https://bugzilla.suse.com/1072315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2017-11481"
},
{
"cve": "CVE-2017-11499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11499"
}
],
"notes": [
{
"category": "general",
"text": "Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building with V8 snapshots enabled by default which caused the initially randomized seed to be overwritten on startup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11499",
"url": "https://www.suse.com/security/cve/CVE-2017-11499"
},
{
"category": "external",
"summary": "SUSE Bug 1044849 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "external",
"summary": "SUSE Bug 1048299 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1048299"
},
{
"category": "external",
"summary": "SUSE Bug 1051117 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1051117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2017-11499"
},
{
"cve": "CVE-2018-18623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18623"
}
],
"notes": [
{
"category": "general",
"text": "Grafana 5.3.1 has XSS via the \"Dashboard \u003e Text Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18623",
"url": "https://www.suse.com/security/cve/CVE-2018-18623"
},
{
"category": "external",
"summary": "SUSE Bug 1172450 for CVE-2018-18623",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2018-18623",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "external",
"summary": "SUSE Bug 1175951 for CVE-2018-18623",
"url": "https://bugzilla.suse.com/1175951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-18623"
},
{
"cve": "CVE-2018-18624",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18624"
}
],
"notes": [
{
"category": "general",
"text": "Grafana 5.3.1 has XSS via a column style on the \"Dashboard \u003e Table Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18624",
"url": "https://www.suse.com/security/cve/CVE-2018-18624"
},
{
"category": "external",
"summary": "SUSE Bug 1172450 for CVE-2018-18624",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2018-18624",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "external",
"summary": "SUSE Bug 1175951 for CVE-2018-18624",
"url": "https://bugzilla.suse.com/1175951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-18624"
},
{
"cve": "CVE-2018-18625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18625"
}
],
"notes": [
{
"category": "general",
"text": "Grafana 5.3.1 has XSS via a link on the \"Dashboard \u003e All Panels \u003e General\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18625",
"url": "https://www.suse.com/security/cve/CVE-2018-18625"
},
{
"category": "external",
"summary": "SUSE Bug 1172450 for CVE-2018-18625",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2018-18625",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "external",
"summary": "SUSE Bug 1175951 for CVE-2018-18625",
"url": "https://bugzilla.suse.com/1175951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-18625"
},
{
"cve": "CVE-2018-19039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-19039"
}
],
"notes": [
{
"category": "general",
"text": "Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-19039",
"url": "https://www.suse.com/security/cve/CVE-2018-19039"
},
{
"category": "external",
"summary": "SUSE Bug 1115960 for CVE-2018-19039",
"url": "https://bugzilla.suse.com/1115960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-19039"
},
{
"cve": "CVE-2019-15043",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-15043"
}
],
"notes": [
{
"category": "general",
"text": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-15043",
"url": "https://www.suse.com/security/cve/CVE-2019-15043"
},
{
"category": "external",
"summary": "SUSE Bug 1148383 for CVE-2019-15043",
"url": "https://bugzilla.suse.com/1148383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2019-15043"
},
{
"cve": "CVE-2019-25025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25025"
}
],
"notes": [
{
"category": "general",
"text": "The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepancies to achieve a correct guess in a relatively short amount of time. This is a related issue to CVE-2019-16782.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25025",
"url": "https://www.suse.com/security/cve/CVE-2019-25025"
},
{
"category": "external",
"summary": "SUSE Bug 1159548 for CVE-2019-25025",
"url": "https://bugzilla.suse.com/1159548"
},
{
"category": "external",
"summary": "SUSE Bug 1183174 for CVE-2019-25025",
"url": "https://bugzilla.suse.com/1183174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-25025"
},
{
"cve": "CVE-2020-10743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10743"
}
],
"notes": [
{
"category": "general",
"text": "It was discovered that OpenShift Container Platform\u0027s (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. This flaw allows an attacker to trick a user into performing arbitrary actions in OCP\u0027s distribution of Kibana, such as clickjacking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10743",
"url": "https://www.suse.com/security/cve/CVE-2020-10743"
},
{
"category": "external",
"summary": "SUSE Bug 1171909 for CVE-2020-10743",
"url": "https://bugzilla.suse.com/1171909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "low"
}
],
"title": "CVE-2020-10743"
},
{
"cve": "CVE-2020-11110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-11110"
}
],
"notes": [
{
"category": "general",
"text": "Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-11110",
"url": "https://www.suse.com/security/cve/CVE-2020-11110"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2020-11110",
"url": "https://bugzilla.suse.com/1174583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-11110"
},
{
"cve": "CVE-2020-12052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-12052"
}
],
"notes": [
{
"category": "general",
"text": "Grafana version \u003c 6.7.3 is vulnerable for annotation popup XSS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-12052",
"url": "https://www.suse.com/security/cve/CVE-2020-12052"
},
{
"category": "external",
"summary": "SUSE Bug 1170657 for CVE-2020-12052",
"url": "https://bugzilla.suse.com/1170657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-12052"
},
{
"cve": "CVE-2020-13379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13379"
}
],
"notes": [
{
"category": "general",
"text": "The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information about the network that Grafana is running on. Furthermore, passing invalid URL objects could be used for DOS\u0027ing Grafana via SegFault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13379",
"url": "https://www.suse.com/security/cve/CVE-2020-13379"
},
{
"category": "external",
"summary": "SUSE Bug 1172409 for CVE-2020-13379",
"url": "https://bugzilla.suse.com/1172409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2020-13379"
},
{
"cve": "CVE-2020-17516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-17516"
}
],
"notes": [
{
"category": "general",
"text": "Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using \u0027dc\u0027 or \u0027rack\u0027 internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted connection despite not being in the same rack or dc, and bypass mutual TLS requirement.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-17516",
"url": "https://www.suse.com/security/cve/CVE-2020-17516"
},
{
"category": "external",
"summary": "SUSE Bug 1181689 for CVE-2020-17516",
"url": "https://bugzilla.suse.com/1181689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-17516"
},
{
"cve": "CVE-2020-24303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-24303"
}
],
"notes": [
{
"category": "general",
"text": "Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-24303",
"url": "https://www.suse.com/security/cve/CVE-2020-24303"
},
{
"category": "external",
"summary": "SUSE Bug 1178243 for CVE-2020-24303",
"url": "https://bugzilla.suse.com/1178243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-24303"
},
{
"cve": "CVE-2020-29651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-29651"
}
],
"notes": [
{
"category": "general",
"text": "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-29651",
"url": "https://www.suse.com/security/cve/CVE-2020-29651"
},
{
"category": "external",
"summary": "SUSE Bug 1179805 for CVE-2020-29651",
"url": "https://bugzilla.suse.com/1179805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-29651"
},
{
"cve": "CVE-2021-21238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21238"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping because it did not validate the SAML document against an XML schema. This allowed invalid XML documents to be processed and such a document can trick pysaml2 with a wrapped signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21238",
"url": "https://www.suse.com/security/cve/CVE-2021-21238"
},
{
"category": "external",
"summary": "SUSE Bug 1181277 for CVE-2021-21238",
"url": "https://bugzilla.suse.com/1181277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-21238"
},
{
"cve": "CVE-2021-21239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21239"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21239",
"url": "https://www.suse.com/security/cve/CVE-2021-21239"
},
{
"category": "external",
"summary": "SUSE Bug 1181278 for CVE-2021-21239",
"url": "https://bugzilla.suse.com/1181278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-21239"
},
{
"cve": "CVE-2021-23336",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23336"
}
],
"notes": [
{
"category": "general",
"text": "The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23336",
"url": "https://www.suse.com/security/cve/CVE-2021-23336"
},
{
"category": "external",
"summary": "SUSE Bug 1182179 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182179"
},
{
"category": "external",
"summary": "SUSE Bug 1182379 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182379"
},
{
"category": "external",
"summary": "SUSE Bug 1182433 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-23336"
},
{
"cve": "CVE-2021-27358",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27358"
}
],
"notes": [
{
"category": "general",
"text": "The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27358",
"url": "https://www.suse.com/security/cve/CVE-2021-27358"
},
{
"category": "external",
"summary": "SUSE Bug 1183803 for CVE-2021-27358",
"url": "https://bugzilla.suse.com/1183803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2021-27358"
},
{
"cve": "CVE-2021-28658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28658"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28658",
"url": "https://www.suse.com/security/cve/CVE-2021-28658"
},
{
"category": "external",
"summary": "SUSE Bug 1184148 for CVE-2021-28658",
"url": "https://bugzilla.suse.com/1184148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "low"
}
],
"title": "CVE-2021-28658"
},
{
"cve": "CVE-2021-31542",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31542"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31542",
"url": "https://www.suse.com/security/cve/CVE-2021-31542"
},
{
"category": "external",
"summary": "SUSE Bug 1185623 for CVE-2021-31542",
"url": "https://bugzilla.suse.com/1185623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-31542"
},
{
"cve": "CVE-2021-33203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33203"
}
],
"notes": [
{
"category": "general",
"text": "Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs templates have been customized by application developers to also show file contents, then not only the existence but also the file contents would have been exposed. In other words, there is directory traversal outside of the template root directories.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33203",
"url": "https://www.suse.com/security/cve/CVE-2021-33203"
},
{
"category": "external",
"summary": "SUSE Bug 1186608 for CVE-2021-33203",
"url": "https://bugzilla.suse.com/1186608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-33203"
},
{
"cve": "CVE-2021-33571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33571"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4_address and validate_ipv46_address are unaffected with Python 3.9.5+..) .",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33571",
"url": "https://www.suse.com/security/cve/CVE-2021-33571"
},
{
"category": "external",
"summary": "SUSE Bug 1186611 for CVE-2021-33571",
"url": "https://bugzilla.suse.com/1186611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2021-33571"
}
]
}
GHSA-5P3X-R448-PC62
Vulnerability from github – Published: 2021-01-21 14:12 – Updated: 2024-10-14 15:41
VLAI?
Summary
Improper Verification of Cryptographic Signature in PySAML2
Details
Impact
All users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. pysaml2 <= 6.4.1 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default, xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only x509 certificates for the verification process of the SAML document signature.
Patches
Users should upgrade to pysaml2 v6.5.0.
Workarounds
No workaround provided at this point.
References
This issue has been reported in the past at the xmlsec1 mailing list: https://www.aleksey.com/pipermail/xmlsec/2013/009717.html
Credits
- Brian Wolff
For more information
If you have any questions or comments about this advisory: * Open an issue in pysaml2 * Email us at the incident-response address
Severity ?
6.5 (Medium)
{
"affected": [
{
"package": {
"ecosystem": "PyPI",
"name": "pysaml2"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.5.0"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2021-21239"
],
"database_specific": {
"cwe_ids": [
"CWE-347"
],
"github_reviewed": true,
"github_reviewed_at": "2021-01-21T14:11:58Z",
"nvd_published_at": "2021-01-21T15:15:00Z",
"severity": "MODERATE"
},
"details": "### Impact\n\nAll users of pysaml2 that use the default `CryptoBackendXmlSec1` backend and need to verify signed SAML documents are impacted. `pysaml2 \u003c= 6.4.1` does not ensure that a signed SAML document is correctly signed. The default `CryptoBackendXmlSec1` backend is using the `xmlsec1` binary to verify the signature of signed SAML documents, but by default, `xmlsec1` accepts any type of key found within the given document. `xmlsec1` needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature.\n\n### Patches\n\nUsers should upgrade to pysaml2 `v6.5.0`.\n\n### Workarounds\n\nNo workaround provided at this point.\n\n### References\n\nThis issue has been reported in the past at the xmlsec1 mailing list:\nhttps://www.aleksey.com/pipermail/xmlsec/2013/009717.html\n\n### Credits\n\n- Brian Wolff\n\n### For more information\n\nIf you have any questions or comments about this advisory:\n* Open an issue in [pysaml2](https://github.com/IdentityPython/pysaml2)\n* Email us at [the incident-response address](mailto:incident-response@idpy.org)\n",
"id": "GHSA-5p3x-r448-pc62",
"modified": "2024-10-14T15:41:51Z",
"published": "2021-01-21T14:12:18Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/IdentityPython/pysaml2/security/advisories/GHSA-5p3x-r448-pc62"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21239"
},
{
"type": "WEB",
"url": "https://github.com/IdentityPython/pysaml2/commit/46578df0695269a16f1c94171f1429873f90ed99"
},
{
"type": "PACKAGE",
"url": "https://github.com/IdentityPython/pysaml2"
},
{
"type": "WEB",
"url": "https://github.com/IdentityPython/pysaml2/releases/tag/v6.5.0"
},
{
"type": "WEB",
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/pysaml2/PYSEC-2021-49.yaml"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html"
},
{
"type": "WEB",
"url": "https://pypi.org/project/pysaml2"
},
{
"type": "WEB",
"url": "https://www.aleksey.com/pipermail/xmlsec/2013/009717.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
"type": "CVSS_V4"
}
],
"summary": "Improper Verification of Cryptographic Signature in PySAML2"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…