Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-2084 (GCVE-0-2022-2084)
Vulnerability from cvelistv5
Published
2023-04-19 21:47
Modified
2025-02-05 14:42
Severity ?
EPSS score ?
Summary
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Canonical Ltd. | cloud-init |
Version: 0 ≤ |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T00:24:44.266Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "patch", "x_transferred", ], url: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", }, { tags: [ "vendor-advisory", "x_transferred", ], url: "https://ubuntu.com/security/notices/USN-5496-1", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2022-2084", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2025-02-05T14:41:29.870718Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-532", description: "CWE-532 Insertion of Sensitive Information into Log File", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-02-05T14:42:29.207Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { collectionURL: "https://github.com/canonical/cloud-init/releases", packageName: "cloud-init", platforms: [ "Linux", ], product: "cloud-init", repo: "https://github.com/canonical/cloud-init/", vendor: "Canonical Ltd.", versions: [ { lessThan: "23.0", status: "affected", version: "0", versionType: "semver", }, ], }, ], credits: [ { lang: "en", type: "finder", value: "Mike Stroyan", }, ], datePublic: "2022-06-29T22:00:00.000Z", descriptions: [ { lang: "en", value: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, format: "CVSS", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-532", description: "CWE-532", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-04-19T21:47:41.034Z", orgId: "cc1ad9ee-3454-478d-9317-d3e869d708bc", shortName: "canonical", }, references: [ { tags: [ "patch", ], url: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", }, { tags: [ "vendor-advisory", ], url: "https://ubuntu.com/security/notices/USN-5496-1", }, ], title: "sensitive data exposure in cloud-init logs", }, }, cveMetadata: { assignerOrgId: "cc1ad9ee-3454-478d-9317-d3e869d708bc", assignerShortName: "canonical", cveId: "CVE-2022-2084", datePublished: "2023-04-19T21:47:41.034Z", dateReserved: "2022-06-14T20:41:08.563Z", dateUpdated: "2025-02-05T14:42:29.207Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"22.3\", \"matchCriteriaId\": \"40F3D313-A853-4C22-B9C6-774118D80091\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"902B8056-9E37-443B-8905-8AA93E2447FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AAE4D2D0-CEEB-416F-8BC5-A7987DF56190\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"359012F1-2C63-415A-88B8-6726A87830DE\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.\"}]", id: "CVE-2022-2084", lastModified: "2024-11-21T07:00:17.490", metrics: "{\"cvssMetricV31\": [{\"source\": \"security@ubuntu.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}]}", published: "2023-04-19T22:15:10.207", references: "[{\"url\": \"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\", \"source\": \"security@ubuntu.com\", \"tags\": [\"Patch\"]}, {\"url\": \"https://ubuntu.com/security/notices/USN-5496-1\", \"source\": \"security@ubuntu.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://ubuntu.com/security/notices/USN-5496-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}]", sourceIdentifier: "security@ubuntu.com", vulnStatus: "Modified", weaknesses: "[{\"source\": \"security@ubuntu.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-532\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-532\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2022-2084\",\"sourceIdentifier\":\"security@ubuntu.com\",\"published\":\"2023-04-19T22:15:10.207\",\"lastModified\":\"2025-02-05T15:15:15.360\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@ubuntu.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@ubuntu.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"22.3\",\"matchCriteriaId\":\"40F3D313-A853-4C22-B9C6-774118D80091\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"902B8056-9E37-443B-8905-8AA93E2447FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AAE4D2D0-CEEB-416F-8BC5-A7987DF56190\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"359012F1-2C63-415A-88B8-6726A87830DE\"}]}]}],\"references\":[{\"url\":\"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\",\"source\":\"security@ubuntu.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://ubuntu.com/security/notices/USN-5496-1\",\"source\":\"security@ubuntu.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://ubuntu.com/security/notices/USN-5496-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]}]}}", vulnrichment: { containers: "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\", \"tags\": [\"patch\", \"x_transferred\"]}, {\"url\": \"https://ubuntu.com/security/notices/USN-5496-1\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T00:24:44.266Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-2084\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-05T14:41:29.870718Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-532\", \"description\": \"CWE-532 Insertion of Sensitive Information into Log File\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-05T14:42:23.119Z\"}}], \"cna\": {\"title\": \"sensitive data exposure in cloud-init logs\", \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Mike Stroyan\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"repo\": \"https://github.com/canonical/cloud-init/\", \"vendor\": \"Canonical Ltd.\", \"product\": \"cloud-init\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"23.0\", \"versionType\": \"semver\"}], \"platforms\": [\"Linux\"], \"packageName\": \"cloud-init\", \"collectionURL\": \"https://github.com/canonical/cloud-init/releases\"}], \"datePublic\": \"2022-06-29T22:00:00.000Z\", \"references\": [{\"url\": \"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\", \"tags\": [\"patch\"]}, {\"url\": \"https://ubuntu.com/security/notices/USN-5496-1\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-532\", \"description\": \"CWE-532\"}]}], \"providerMetadata\": {\"orgId\": \"cc1ad9ee-3454-478d-9317-d3e869d708bc\", \"shortName\": \"canonical\", \"dateUpdated\": \"2023-04-19T21:47:41.034Z\"}}}", cveMetadata: "{\"cveId\": \"CVE-2022-2084\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-05T14:42:29.207Z\", \"dateReserved\": \"2022-06-14T20:41:08.563Z\", \"assignerOrgId\": \"cc1ad9ee-3454-478d-9317-d3e869d708bc\", \"datePublished\": \"2023-04-19T21:47:41.034Z\", \"assignerShortName\": \"canonical\"}", dataType: "CVE_RECORD", dataVersion: "5.1", }, }, }
ghsa-w62x-qh57-5m94
Vulnerability from github
Published
2023-04-20 00:30
Modified
2024-04-04 03:36
Severity ?
Details
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
{ affected: [], aliases: [ "CVE-2022-2084", ], database_specific: { cwe_ids: [ "CWE-532", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2023-04-19T22:15:10Z", severity: "MODERATE", }, details: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", id: "GHSA-w62x-qh57-5m94", modified: "2024-04-04T03:36:26Z", published: "2023-04-20T00:30:43Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-2084", }, { type: "WEB", url: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", }, { type: "WEB", url: "https://ubuntu.com/security/notices/USN-5496-1", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", type: "CVSS_V3", }, ], }
fkie_cve-2022-2084
Vulnerability from fkie_nvd
Published
2023-04-19 22:15
Modified
2025-02-05 15:15
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| canonical | cloud-init | * | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 20.04 | |
| canonical | ubuntu_linux | 21.10 | |
| canonical | ubuntu_linux | 22.04 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*", matchCriteriaId: "40F3D313-A853-4C22-B9C6-774118D80091", versionEndExcluding: "22.3", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", matchCriteriaId: "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*", matchCriteriaId: "902B8056-9E37-443B-8905-8AA93E2447FB", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*", matchCriteriaId: "AAE4D2D0-CEEB-416F-8BC5-A7987DF56190", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*", matchCriteriaId: "359012F1-2C63-415A-88B8-6726A87830DE", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", }, ], id: "CVE-2022-2084", lastModified: "2025-02-05T15:15:15.360", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "security@ubuntu.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "134c704f-9b21-4f2e-91b3-4a467353bcc0", type: "Secondary", }, ], }, published: "2023-04-19T22:15:10.207", references: [ { source: "security@ubuntu.com", tags: [ "Patch", ], url: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", }, { source: "security@ubuntu.com", tags: [ "Broken Link", ], url: "https://ubuntu.com/security/notices/USN-5496-1", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", ], url: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", ], url: "https://ubuntu.com/security/notices/USN-5496-1", }, ], sourceIdentifier: "security@ubuntu.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-532", }, ], source: "security@ubuntu.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-532", }, ], source: "nvd@nist.gov", type: "Primary", }, { description: [ { lang: "en", value: "CWE-532", }, ], source: "134c704f-9b21-4f2e-91b3-4a467353bcc0", type: "Secondary", }, ], }
gsd-2022-2084
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
Aliases
Aliases
{ GSD: { alias: "CVE-2022-2084", id: "GSD-2022-2084", references: [ "https://ubuntu.com/security/CVE-2022-2084", "https://www.suse.com/security/cve/CVE-2022-2084.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2022-2084", ], details: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", id: "GSD-2022-2084", modified: "2023-12-13T01:19:19.500688Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security@ubuntu.com", ID: "CVE-2022-2084", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "cloud-init", version: { version_data: [ { version_affected: "<", version_name: "0", version_value: "23.0", }, ], }, }, ], }, vendor_name: "Canonical Ltd.", }, ], }, }, credits: [ { lang: "en", value: "Mike Stroyan", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", }, ], }, impact: { cvss: [ { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, ], }, problemtype: { problemtype_data: [ { description: [ { cweId: "CWE-532", lang: "eng", value: "CWE-532", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", refsource: "MISC", url: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", }, { name: "https://ubuntu.com/security/notices/USN-5496-1", refsource: "MISC", url: "https://ubuntu.com/security/notices/USN-5496-1", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "22.3", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security@ubuntu.com", ID: "CVE-2022-2084", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-532", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", refsource: "MISC", tags: [ "Patch", ], url: "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c", }, { name: "https://ubuntu.com/security/notices/USN-5496-1", refsource: "MISC", tags: [ "Broken Link", ], url: "https://ubuntu.com/security/notices/USN-5496-1", }, ], }, }, impact: { baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, }, }, lastModifiedDate: "2023-05-01T17:39Z", publishedDate: "2023-04-19T22:15Z", }, }, }
suse-su-2023:2628-1
Vulnerability from csaf_suse
Published
2023-06-23 19:44
Modified
2023-06-23 19:44
Summary
Security update for cloud-init
Notes
Title of the patch
Security update for cloud-init
Description of the patch
This update for cloud-init fixes the following issues:
- CVE-2023-1786: Do not expose sensitive data gathered from the CSP. (bsc#1210277)
- CVE-2022-2084: Fixed a bug which caused logging schema failures can include password hashes. (bsc#1210652)
- Update to version 23.1
+ Support transactional-updates for SUSE based distros
+ Set ownership for new folders in Write Files Module
+ add OpenCloudOS and TencentOS support
+ lxd: Retry if the server isn't ready
+ test: switch pycloudlib source to pypi
+ test: Fix integration test deprecation message
+ Recognize opensuse-microos, dev tooling fixes
+ sources/azure: refactor imds handler into own module
+ docs: deprecation generation support
+ add function is_virtual to distro/FreeBSD
+ cc_ssh: support multiple hostcertificates
+ Fix minor schema validation regression and fixup typing
+ doc: Reword user data debug section
+ cli: schema also validate vendordata*.
+ ci: sort and add checks for cla signers file
+ Add 'ederst' as contributor
+ readme: add reference to packages dir
+ docs: update downstream package list
+ docs: add google search verification
+ docs: fix 404 render use default notfound_urls_prefix in RTD conf
+ Fix OpenStack datasource detection on bare metal
+ docs: add themed RTD 404 page and pointer to readthedocs-hosted
+ schema: fix gpt labels, use type string for GUID
+ cc_disk_setup: code cleanup
+ netplan: keep custom strict perms when 50-cloud-init.yaml exists
+ cloud-id: better handling of change in datasource files
+ Warn on empty network key
+ Fix Vultr cloud_interfaces usage
+ cc_puppet: Update puppet service name
+ docs: Clarify networking docs
+ lint: remove httpretty
+ cc_set_passwords: Prevent traceback when restarting ssh
+ tests: fix lp1912844
+ tests: Skip ansible test on bionic
+ Wait for NetworkManager
+ docs: minor polishing
+ CI: migrate integration-test to GH actions
+ Fix permission of SSH host keys
+ Fix default route rendering on v2 ipv6
+ doc: fix path in net_convert command
+ docs: update net_convert docs
+ doc: fix dead link
+ cc_set_hostname: ignore /var/lib/cloud/data/set-hostname if it's empty
+ distros/rhel.py: _read_hostname() missing strip on 'hostname'
+ integration tests: add IBM VPC support
+ machine-id: set to uninitialized to trigger regeneration on clones
+ sources/azure: retry on connection error when fetching metdata
+ Ensure ssh state accurately obtained
+ bddeb: drop dh-systemd dependency on newer deb-based releases
+ doc: fix `config formats` link in cloudsigma.rst
+ Fix wrong subp syntax in cc_set_passwords.py
+ docs: update the PR template link to readthedocs
+ ci: switch unittests to gh actions
+ Add mount_default_fields for PhotonOS.
+ sources/azure: minor refactor for metadata source detection logic
+ add 'CalvoM' as contributor
+ ci: doc to gh actions
+ lxd: handle 404 from missing devices route for LXD 4.0
+ docs: Diataxis overhaul
+ vultr: Fix issue regarding cache and region codes
+ cc_set_passwords: Move ssh status checking later
+ Improve Wireguard module idempotency
+ network/netplan: add gateways as on-link when necessary
+ tests: test_lxd assert features.networks.zones when present
+ Use btrfs enquque when available (#1926) [Robert Schweikert]
+ sources/azure: fix device driver matching for net config (#1914)
+ BSD: fix duplicate macs in Ifconfig parser
+ pycloudlib: add lunar support for integration tests
+ nocloud: add support for dmi variable expansion for seedfrom URL
+ tools: read-version drop extra call to git describe --long
+ doc: improve cc_write_files doc
+ read-version: When insufficient tags, use cloudinit.version.get_version
+ mounts: document weird prefix in schema
+ Ensure network ready before cloud-init service runs on RHEL
+ docs: add copy button to code blocks
+ netplan: define features.NETPLAN_CONFIG_ROOT_READ_ONLY flag
+ azure: fix support for systems without az command installed
+ Fix the distro.osfamily output problem in the openEuler system.
+ pycloudlib: bump commit dropping azure api smoke test
+ net: netplan config root read-only as wifi config can contain creds
+ autoinstall: clarify docs for users
+ sources/azure: encode health report as utf-8
+ Add back gateway4/6 deprecation to docs
+ networkd: Add support for multiple [Route] sections
+ doc: add qemu tutorial
+ lint: fix tip-flake8 and tip-mypy
+ Add support for setting uid when creating users on FreeBSD
+ Fix exception in BSD networking code-path
+ Append derivatives to is_rhel list in cloud.cfg.tmpl
+ FreeBSD init: use cloudinit_enable as only rcvar
+ feat: add support aliyun metadata security harden mode
+ docs: uprate analyze to performance page
+ test: fix lxd preseed managed network config
+ Add support for static IPv6 addresses for FreeBSD
+ Make 3.12 failures not fail the build
+ Docs: adding relative links
+ Fix setup.py to align with PEP 440 versioning replacing trailing
+ Add 'nkukard' as contributor
+ doc: add how to render new module doc
+ doc: improve module creation explanation
+ Add Support for IPv6 metadata to OpenStack
+ add xiaoge1001 to .github-cla-signers
+ network: Deprecate gateway{4,6} keys in network config v2
+ VMware: Move Guest Customization transport from OVF to VMware
+ doc: home page links added
+ net: skip duplicate mac check for netvsc nic and its VF
This update for python-responses fixes the following issues:
- update to 0.21.0:
* Add `threading.Lock()` to allow `responses` working with `threading` module.
* Add `urllib3` `Retry` mechanism. See #135
* Removed internal `_cookies_from_headers` function
* Now `add`, `upsert`, `replace` methods return registered response.
`remove` method returns list of removed responses.
* Added null value support in `urlencoded_params_matcher` via `allow_blank` keyword argument
* Added strict version of decorator. Now you can apply `@responses.activate(assert_all_requests_are_fired=True)`
to your function to validate that all requests were executed in the wrapped function. See #183
Patchnames
SUSE-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP1-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP2-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP3-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP4-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP5-2023-2628,openSUSE-SLE-15.4-2023-2628,openSUSE-SLE-15.5-2023-2628
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for cloud-init", title: "Title of the patch", }, { category: "description", text: "This update for cloud-init fixes the following issues:\n\n- CVE-2023-1786: Do not expose sensitive data gathered from the CSP. (bsc#1210277)\n- CVE-2022-2084: Fixed a bug which caused logging schema failures can include password hashes. (bsc#1210652)\n \n- Update to version 23.1\n\n + Support transactional-updates for SUSE based distros\n + Set ownership for new folders in Write Files Module\n + add OpenCloudOS and TencentOS support\n + lxd: Retry if the server isn't ready \n + test: switch pycloudlib source to pypi \n + test: Fix integration test deprecation message \n + Recognize opensuse-microos, dev tooling fixes \n + sources/azure: refactor imds handler into own module \n + docs: deprecation generation support \n + add function is_virtual to distro/FreeBSD\n + cc_ssh: support multiple hostcertificates \n + Fix minor schema validation regression and fixup typing \n + doc: Reword user data debug section \n + cli: schema also validate vendordata*.\n + ci: sort and add checks for cla signers file \n + Add 'ederst' as contributor\n + readme: add reference to packages dir \n + docs: update downstream package list \n + docs: add google search verification \n + docs: fix 404 render use default notfound_urls_prefix in RTD conf\n + Fix OpenStack datasource detection on bare metal\n + docs: add themed RTD 404 page and pointer to readthedocs-hosted \n + schema: fix gpt labels, use type string for GUID \n + cc_disk_setup: code cleanup \n + netplan: keep custom strict perms when 50-cloud-init.yaml exists\n + cloud-id: better handling of change in datasource files\n + Warn on empty network key \n + Fix Vultr cloud_interfaces usage \n + cc_puppet: Update puppet service name \n + docs: Clarify networking docs \n + lint: remove httpretty \n + cc_set_passwords: Prevent traceback when restarting ssh \n + tests: fix lp1912844 \n + tests: Skip ansible test on bionic \n + Wait for NetworkManager \n + docs: minor polishing \n + CI: migrate integration-test to GH actions \n + Fix permission of SSH host keys \n + Fix default route rendering on v2 ipv6\n + doc: fix path in net_convert command \n + docs: update net_convert docs\n + doc: fix dead link\n + cc_set_hostname: ignore /var/lib/cloud/data/set-hostname if it's empty\n + distros/rhel.py: _read_hostname() missing strip on 'hostname'\n + integration tests: add IBM VPC support \n + machine-id: set to uninitialized to trigger regeneration on clones\n + sources/azure: retry on connection error when fetching metdata \n + Ensure ssh state accurately obtained \n + bddeb: drop dh-systemd dependency on newer deb-based releases \n + doc: fix `config formats` link in cloudsigma.rst \n + Fix wrong subp syntax in cc_set_passwords.py \n + docs: update the PR template link to readthedocs \n + ci: switch unittests to gh actions\n + Add mount_default_fields for PhotonOS. \n + sources/azure: minor refactor for metadata source detection logic\n + add 'CalvoM' as contributor \n + ci: doc to gh actions \n + lxd: handle 404 from missing devices route for LXD 4.0 \n + docs: Diataxis overhaul \n + vultr: Fix issue regarding cache and region codes \n + cc_set_passwords: Move ssh status checking later \n + Improve Wireguard module idempotency \n + network/netplan: add gateways as on-link when necessary \n + tests: test_lxd assert features.networks.zones when present \n + Use btrfs enquque when available (#1926) [Robert Schweikert]\n + sources/azure: fix device driver matching for net config (#1914)\n + BSD: fix duplicate macs in Ifconfig parser \n + pycloudlib: add lunar support for integration tests \n + nocloud: add support for dmi variable expansion for seedfrom URL\n + tools: read-version drop extra call to git describe --long\n + doc: improve cc_write_files doc\n + read-version: When insufficient tags, use cloudinit.version.get_version\n + mounts: document weird prefix in schema \n + Ensure network ready before cloud-init service runs on RHEL\n + docs: add copy button to code blocks \n + netplan: define features.NETPLAN_CONFIG_ROOT_READ_ONLY flag\n + azure: fix support for systems without az command installed \n + Fix the distro.osfamily output problem in the openEuler system. \n + pycloudlib: bump commit dropping azure api smoke test\n + net: netplan config root read-only as wifi config can contain creds\n + autoinstall: clarify docs for users\n + sources/azure: encode health report as utf-8 \n + Add back gateway4/6 deprecation to docs \n + networkd: Add support for multiple [Route] sections \n + doc: add qemu tutorial \n + lint: fix tip-flake8 and tip-mypy \n + Add support for setting uid when creating users on FreeBSD \n + Fix exception in BSD networking code-path \n + Append derivatives to is_rhel list in cloud.cfg.tmpl \n + FreeBSD init: use cloudinit_enable as only rcvar \n + feat: add support aliyun metadata security harden mode \n + docs: uprate analyze to performance page\n + test: fix lxd preseed managed network config \n + Add support for static IPv6 addresses for FreeBSD \n + Make 3.12 failures not fail the build \n + Docs: adding relative links \n + Fix setup.py to align with PEP 440 versioning replacing trailing\n + Add 'nkukard' as contributor \n + doc: add how to render new module doc \n + doc: improve module creation explanation \n + Add Support for IPv6 metadata to OpenStack \n + add xiaoge1001 to .github-cla-signers\n + network: Deprecate gateway{4,6} keys in network config v2\n + VMware: Move Guest Customization transport from OVF to VMware\n + doc: home page links added\n + net: skip duplicate mac check for netvsc nic and its VF\n\nThis update for python-responses fixes the following issues:\n \n- update to 0.21.0:\n * Add `threading.Lock()` to allow `responses` working with `threading` module.\n * Add `urllib3` `Retry` mechanism. See #135\n * Removed internal `_cookies_from_headers` function\n * Now `add`, `upsert`, `replace` methods return registered response.\n `remove` method returns list of removed responses.\n * Added null value support in `urlencoded_params_matcher` via `allow_blank` keyword argument\n * Added strict version of decorator. Now you can apply `@responses.activate(assert_all_requests_are_fired=True)`\n to your function to validate that all requests were executed in the wrapped function. See #183\n\n \n", title: "Description of the patch", }, { category: "details", text: "SUSE-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP1-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP2-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP3-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP4-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP5-2023-2628,openSUSE-SLE-15.4-2023-2628,openSUSE-SLE-15.5-2023-2628", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_2628-1.json", }, { category: "self", summary: "URL for SUSE-SU-2023:2628-1", url: "https://www.suse.com/support/update/announcement/2023/suse-su-20232628-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2023:2628-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2023-June/015295.html", }, { category: "self", summary: "SUSE Bug 1171511", url: "https://bugzilla.suse.com/1171511", }, { category: "self", summary: "SUSE Bug 1203393", url: "https://bugzilla.suse.com/1203393", }, { category: "self", summary: "SUSE Bug 1210277", url: "https://bugzilla.suse.com/1210277", }, { category: "self", summary: "SUSE Bug 1210652", url: "https://bugzilla.suse.com/1210652", }, { category: "self", summary: "SUSE CVE CVE-2022-2084 page", url: "https://www.suse.com/security/cve/CVE-2022-2084/", }, { category: "self", summary: "SUSE CVE CVE-2023-1786 page", url: "https://www.suse.com/security/cve/CVE-2023-1786/", }, ], title: "Security update for cloud-init", tracking: { current_release_date: "2023-06-23T19:44:04Z", generator: { date: "2023-06-23T19:44:04Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2023:2628-1", initial_release_date: "2023-06-23T19:44:04Z", revision_history: [ { date: "2023-06-23T19:44:04Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "cloud-init-23.1-150100.8.63.5.aarch64", product: { name: "cloud-init-23.1-150100.8.63.5.aarch64", product_id: "cloud-init-23.1-150100.8.63.5.aarch64", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", product: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", product_id: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, }, { category: "product_version", name: "cloud-init-doc-23.1-150100.8.63.5.aarch64", product: { name: "cloud-init-doc-23.1-150100.8.63.5.aarch64", product_id: "cloud-init-doc-23.1-150100.8.63.5.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "cloud-init-23.1-150100.8.63.5.i586", product: { name: "cloud-init-23.1-150100.8.63.5.i586", product_id: "cloud-init-23.1-150100.8.63.5.i586", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-150100.8.63.5.i586", product: { name: "cloud-init-config-suse-23.1-150100.8.63.5.i586", product_id: "cloud-init-config-suse-23.1-150100.8.63.5.i586", }, }, { category: "product_version", name: "cloud-init-doc-23.1-150100.8.63.5.i586", product: { name: "cloud-init-doc-23.1-150100.8.63.5.i586", product_id: "cloud-init-doc-23.1-150100.8.63.5.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "python2-cookies-2.2.1-150100.3.5.1.noarch", product: { name: "python2-cookies-2.2.1-150100.3.5.1.noarch", product_id: "python2-cookies-2.2.1-150100.3.5.1.noarch", }, }, { category: "product_version", name: "python3-cookies-2.2.1-150100.3.5.1.noarch", product: { name: "python3-cookies-2.2.1-150100.3.5.1.noarch", product_id: "python3-cookies-2.2.1-150100.3.5.1.noarch", }, }, { category: "product_version", name: "python3-responses-0.21.0-150100.3.3.1.noarch", product: { name: "python3-responses-0.21.0-150100.3.3.1.noarch", product_id: "python3-responses-0.21.0-150100.3.3.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "cloud-init-23.1-150100.8.63.5.ppc64le", product: { name: "cloud-init-23.1-150100.8.63.5.ppc64le", product_id: "cloud-init-23.1-150100.8.63.5.ppc64le", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", product: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", product_id: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, }, { category: "product_version", name: "cloud-init-doc-23.1-150100.8.63.5.ppc64le", product: { name: "cloud-init-doc-23.1-150100.8.63.5.ppc64le", product_id: "cloud-init-doc-23.1-150100.8.63.5.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "cloud-init-23.1-150100.8.63.5.s390x", product: { name: "cloud-init-23.1-150100.8.63.5.s390x", product_id: "cloud-init-23.1-150100.8.63.5.s390x", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", product: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", product_id: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, }, { category: "product_version", name: "cloud-init-doc-23.1-150100.8.63.5.s390x", product: { name: "cloud-init-doc-23.1-150100.8.63.5.s390x", product_id: "cloud-init-doc-23.1-150100.8.63.5.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "cloud-init-23.1-150100.8.63.5.x86_64", product: { name: "cloud-init-23.1-150100.8.63.5.x86_64", product_id: "cloud-init-23.1-150100.8.63.5.x86_64", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", product: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", product_id: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, }, { category: "product_version", name: "cloud-init-doc-23.1-150100.8.63.5.x86_64", product: { name: "cloud-init-doc-23.1-150100.8.63.5.x86_64", product_id: "cloud-init-doc-23.1-150100.8.63.5.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp5", }, }, }, { category: "product_name", name: "openSUSE Leap 15.4", product: { name: "openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.4", }, }, }, { category: "product_name", name: "openSUSE Leap 15.5", product: { name: "openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP2", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP3", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-23.1-150100.8.63.5.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-23.1-150100.8.63.5.s390x", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.s390x", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-config-suse-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.aarch64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.ppc64le", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.s390x", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64", }, product_reference: "cloud-init-doc-23.1-150100.8.63.5.x86_64", relates_to_product_reference: "openSUSE Leap 15.5", }, ], }, vulnerabilities: [ { cve: "CVE-2022-2084", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-2084", }, ], notes: [ { category: "general", text: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-2084", url: "https://www.suse.com/security/cve/CVE-2022-2084", }, { category: "external", summary: "SUSE Bug 1210652 for CVE-2022-2084", url: "https://bugzilla.suse.com/1210652", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64", ], }, ], threats: [ { category: "impact", date: "2023-06-23T19:44:04Z", details: "moderate", }, ], title: "CVE-2022-2084", }, { cve: "CVE-2023-1786", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-1786", }, ], notes: [ { category: "general", text: "Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-1786", url: "https://www.suse.com/security/cve/CVE-2023-1786", }, { category: "external", summary: "SUSE Bug 1210277 for CVE-2023-1786", url: "https://bugzilla.suse.com/1210277", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x", "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64", ], }, ], threats: [ { category: "impact", date: "2023-06-23T19:44:04Z", details: "moderate", }, ], title: "CVE-2023-1786", }, ], }
opensuse-su-2024:12738-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
cloud-init-23.1-1.1 on GA media
Notes
Title of the patch
cloud-init-23.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the cloud-init-23.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-12738
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "cloud-init-23.1-1.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the cloud-init-23.1-1.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-12738", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12738-1.json", }, { category: "self", summary: "SUSE CVE CVE-2022-2084 page", url: "https://www.suse.com/security/cve/CVE-2022-2084/", }, ], title: "cloud-init-23.1-1.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:12738-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "cloud-init-23.1-1.1.aarch64", product: { name: "cloud-init-23.1-1.1.aarch64", product_id: "cloud-init-23.1-1.1.aarch64", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-1.1.aarch64", product: { name: "cloud-init-config-suse-23.1-1.1.aarch64", product_id: "cloud-init-config-suse-23.1-1.1.aarch64", }, }, { category: "product_version", name: "cloud-init-doc-23.1-1.1.aarch64", product: { name: "cloud-init-doc-23.1-1.1.aarch64", product_id: "cloud-init-doc-23.1-1.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "cloud-init-23.1-1.1.ppc64le", product: { name: "cloud-init-23.1-1.1.ppc64le", product_id: "cloud-init-23.1-1.1.ppc64le", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-1.1.ppc64le", product: { name: "cloud-init-config-suse-23.1-1.1.ppc64le", product_id: "cloud-init-config-suse-23.1-1.1.ppc64le", }, }, { category: "product_version", name: "cloud-init-doc-23.1-1.1.ppc64le", product: { name: "cloud-init-doc-23.1-1.1.ppc64le", product_id: "cloud-init-doc-23.1-1.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "cloud-init-23.1-1.1.s390x", product: { name: "cloud-init-23.1-1.1.s390x", product_id: "cloud-init-23.1-1.1.s390x", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-1.1.s390x", product: { name: "cloud-init-config-suse-23.1-1.1.s390x", product_id: "cloud-init-config-suse-23.1-1.1.s390x", }, }, { category: "product_version", name: "cloud-init-doc-23.1-1.1.s390x", product: { name: "cloud-init-doc-23.1-1.1.s390x", product_id: "cloud-init-doc-23.1-1.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "cloud-init-23.1-1.1.x86_64", product: { name: "cloud-init-23.1-1.1.x86_64", product_id: "cloud-init-23.1-1.1.x86_64", }, }, { category: "product_version", name: "cloud-init-config-suse-23.1-1.1.x86_64", product: { name: "cloud-init-config-suse-23.1-1.1.x86_64", product_id: "cloud-init-config-suse-23.1-1.1.x86_64", }, }, { category: "product_version", name: "cloud-init-doc-23.1-1.1.x86_64", product: { name: "cloud-init-doc-23.1-1.1.x86_64", product_id: "cloud-init-doc-23.1-1.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64", }, product_reference: "cloud-init-23.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le", }, product_reference: "cloud-init-23.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x", }, product_reference: "cloud-init-23.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-23.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64", }, product_reference: "cloud-init-23.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64", }, product_reference: "cloud-init-config-suse-23.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le", }, product_reference: "cloud-init-config-suse-23.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x", }, product_reference: "cloud-init-config-suse-23.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-config-suse-23.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64", }, product_reference: "cloud-init-config-suse-23.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64", }, product_reference: "cloud-init-doc-23.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le", }, product_reference: "cloud-init-doc-23.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x", }, product_reference: "cloud-init-doc-23.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "cloud-init-doc-23.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64", }, product_reference: "cloud-init-doc-23.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2022-2084", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-2084", }, ], notes: [ { category: "general", text: "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-2084", url: "https://www.suse.com/security/cve/CVE-2022-2084", }, { category: "external", summary: "SUSE Bug 1210652 for CVE-2022-2084", url: "https://bugzilla.suse.com/1210652", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x", "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2022-2084", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.