rhba-2015_0928
Vulnerability from csaf_redhat
Published
2015-05-05 13:30
Modified
2024-11-14 16:25
Summary
Red Hat Bug Fix Advisory: Red Hat Enterprise Linux OpenStack Platform Bug Fix and Enhancement Advisory
Notes
Topic
Updated packages that resolve various issues are now available for Red Hat
Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7.
Details
Red Hat Enterprise Linux OpenStack Platform provides the facilities for
building a private or public infrastructure-as-a-service (IaaS) cloud
running on commonly available physical hardware.
This update addresses the following issues:
This rebase package includes a notable fix under version 5.5.41:
* With this release, mariadb-galera is rebased to version 5.5.41, fixing the memory barrier problem in InnoDB/XtraDB mutex implementation, which caused the server to stall or hang. (BZ#1203009)
* Prior to this update, freeform options could not be passed to MKFS from DIB, even though the FS type was modifiable.
Consequently, when building an ext4 FS on Red Hat Enterprise Linux (RHEL) 6 from a RHEL 7 build host, the 64-bit flag was set, resulting in a non-booting VM.
This fix addresses this issue by adding the mkfs-options arg to the disk-image-create script, allowing arbitrary user-defined options to be passed to mkfs.
As a result, fully booting ext4 FS can be built on RHEL 6 from RHEL 7, and as a side benefit, users now have a hook to specify many properties of their filesystem which were previously locked without code modification. (BZ#1206676)
* Prior to this update, the openstack-trove-guestagent service may have failed to start if the underlying database was not running. This update ensures that the MariaDB service is running before starting the guestagent. The workaround is to first start the guestagent service. (BZ#1209584)
* Previously, SELinux blocked Compute from spawning an instance when using live migration with NFS storage.
Consequently, Compute was prevented from creating instances.
This update allows virt types to write to Compute file types, and as a result, Compute is now able to spawn an instance. (BZ#1211628)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated packages that resolve various issues are now available for Red Hat\nEnterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Enterprise Linux OpenStack Platform provides the facilities for\nbuilding a private or public infrastructure-as-a-service (IaaS) cloud\nrunning on commonly available physical hardware.\n\nThis update addresses the following issues:\n\nThis rebase package includes a notable fix under version 5.5.41:\n* With this release, mariadb-galera is rebased to version 5.5.41, fixing the memory barrier problem in InnoDB/XtraDB mutex implementation, which caused the server to stall or hang. (BZ#1203009)\n\n* Prior to this update, freeform options could not be passed to MKFS from DIB, even though the FS type was modifiable.\nConsequently, when building an ext4 FS on Red Hat Enterprise Linux (RHEL) 6 from a RHEL 7 build host, the 64-bit flag was set, resulting in a non-booting VM.\nThis fix addresses this issue by adding the mkfs-options arg to the disk-image-create script, allowing arbitrary user-defined options to be passed to mkfs.\nAs a result, fully booting ext4 FS can be built on RHEL 6 from RHEL 7, and as a side benefit, users now have a hook to specify many properties of their filesystem which were previously locked without code modification. (BZ#1206676)\n\n* Prior to this update, the openstack-trove-guestagent service may have failed to start if the underlying database was not running. This update ensures that the MariaDB service is running before starting the guestagent. The workaround is to first start the guestagent service. (BZ#1209584)\n\n* Previously, SELinux blocked Compute from spawning an instance when using live migration with NFS storage. \nConsequently, Compute was prevented from creating instances.\nThis update allows virt types to write to Compute file types, and as a result, Compute is now able to spawn an instance. (BZ#1211628)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2015:0928",
"url": "https://access.redhat.com/errata/RHBA-2015:0928"
},
{
"category": "external",
"summary": "https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform/6/html/Release_Notes/index.html",
"url": "https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform/6/html/Release_Notes/index.html"
},
{
"category": "external",
"summary": "1024556",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1024556"
},
{
"category": "external",
"summary": "1203009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1203009"
},
{
"category": "external",
"summary": "1206676",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1206676"
},
{
"category": "external",
"summary": "1209584",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1209584"
},
{
"category": "external",
"summary": "1210463",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210463"
},
{
"category": "external",
"summary": "1212893",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1212893"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhba-2015_0928.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat Enterprise Linux OpenStack Platform Bug Fix and Enhancement Advisory",
"tracking": {
"current_release_date": "2024-11-14T16:25:46+00:00",
"generator": {
"date": "2024-11-14T16:25:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.0"
}
},
"id": "RHBA-2015:0928",
"initial_release_date": "2015-05-05T13:30:45+00:00",
"revision_history": [
{
"date": "2015-05-05T13:30:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-05-05T13:30:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-14T16:25:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product": {
"name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:6::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "diskimage-builder-0:0.1.34-21.el7ost.src",
"product": {
"name": "diskimage-builder-0:0.1.34-21.el7ost.src",
"product_id": "diskimage-builder-0:0.1.34-21.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/diskimage-builder@0.1.34-21.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "openstack-selinux-0:0.6.29-1.el7ost.src",
"product": {
"name": "openstack-selinux-0:0.6.29-1.el7ost.src",
"product_id": "openstack-selinux-0:0.6.29-1.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-selinux@0.6.29-1.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src",
"product": {
"name": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src",
"product_id": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-access-plugin-openstack@6.0.3-1.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "mariadb-galera-1:5.5.41-2.el7ost.src",
"product": {
"name": "mariadb-galera-1:5.5.41-2.el7ost.src",
"product_id": "mariadb-galera-1:5.5.41-2.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mariadb-galera@5.5.41-2.el7ost?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openstack-trove-0:2014.2.3-3.el7ost.src",
"product": {
"name": "openstack-trove-0:2014.2.3-3.el7ost.src",
"product_id": "openstack-trove-0:2014.2.3-3.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-trove@2014.2.3-3.el7ost?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "diskimage-builder-0:0.1.34-21.el7ost.noarch",
"product": {
"name": "diskimage-builder-0:0.1.34-21.el7ost.noarch",
"product_id": "diskimage-builder-0:0.1.34-21.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/diskimage-builder@0.1.34-21.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-selinux-0:0.6.29-1.el7ost.noarch",
"product": {
"name": "openstack-selinux-0:0.6.29-1.el7ost.noarch",
"product_id": "openstack-selinux-0:0.6.29-1.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-selinux@0.6.29-1.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"product": {
"name": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"product_id": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-access-plugin-openstack@6.0.3-1.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"product": {
"name": "openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"product_id": "openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-trove-api@2014.2.3-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"product": {
"name": "openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"product_id": "openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-trove-taskmanager@2014.2.3-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-trove-0:2014.2.3-3.el7ost.noarch",
"product": {
"name": "openstack-trove-0:2014.2.3-3.el7ost.noarch",
"product_id": "openstack-trove-0:2014.2.3-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-trove@2014.2.3-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"product": {
"name": "openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"product_id": "openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-trove-guestagent@2014.2.3-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"product": {
"name": "openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"product_id": "openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-trove-common@2014.2.3-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python-trove-0:2014.2.3-3.el7ost.noarch",
"product": {
"name": "python-trove-0:2014.2.3-3.el7ost.noarch",
"product_id": "python-trove-0:2014.2.3-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-trove@2014.2.3-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"product": {
"name": "openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"product_id": "openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-trove-conductor@2014.2.3-3.el7ost?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"product": {
"name": "mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"product_id": "mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mariadb-galera-debuginfo@5.5.41-2.el7ost?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"product": {
"name": "mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"product_id": "mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mariadb-galera-common@5.5.41-2.el7ost?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"product": {
"name": "mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"product_id": "mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mariadb-galera-server@5.5.41-2.el7ost?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "diskimage-builder-0:0.1.34-21.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch"
},
"product_reference": "diskimage-builder-0:0.1.34-21.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "diskimage-builder-0:0.1.34-21.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src"
},
"product_reference": "diskimage-builder-0:0.1.34-21.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mariadb-galera-1:5.5.41-2.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src"
},
"product_reference": "mariadb-galera-1:5.5.41-2.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mariadb-galera-common-1:5.5.41-2.el7ost.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64"
},
"product_reference": "mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64"
},
"product_reference": "mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mariadb-galera-server-1:5.5.41-2.el7ost.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64"
},
"product_reference": "mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-selinux-0:0.6.29-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch"
},
"product_reference": "openstack-selinux-0:0.6.29-1.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-selinux-0:0.6.29-1.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src"
},
"product_reference": "openstack-selinux-0:0.6.29-1.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-trove-0:2014.2.3-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch"
},
"product_reference": "openstack-trove-0:2014.2.3-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-trove-0:2014.2.3-3.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src"
},
"product_reference": "openstack-trove-0:2014.2.3-3.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-trove-api-0:2014.2.3-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch"
},
"product_reference": "openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-trove-common-0:2014.2.3-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch"
},
"product_reference": "openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch"
},
"product_reference": "openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch"
},
"product_reference": "openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch"
},
"product_reference": "openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-trove-0:2014.2.3-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch"
},
"product_reference": "python-trove-0:2014.2.3-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch"
},
"product_reference": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
},
"product_reference": "redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-6568",
"discovery_date": "2015-01-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1184552"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified vulnerability related to Server:InnoDB:DML (CPU Jan 2015)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-6568"
},
{
"category": "external",
"summary": "RHBZ#1184552",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1184552"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-6568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6568"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-6568",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-6568"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL"
}
],
"release_date": "2015-01-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-05-05T13:30:45+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 6 runs on Red Hat Enterprise Linux 7.1.\n\nThis update is available through \u0027yum update\u0027 on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see:\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html\n\nRed Hat Enterprise Linux OpenStack Platform 6 documentation is available at:\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform\n\nThe Red Hat Enterprise Linux OpenStack Platform 6 Release Notes (see the References section) contain the following:\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 6, including which channels need to be enabled and disabled.",
"product_ids": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2015:0928"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified vulnerability related to Server:InnoDB:DML (CPU Jan 2015)"
},
{
"cve": "CVE-2015-0374",
"discovery_date": "2015-01-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1184553"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges : Foreign Key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified vulnerability related to Server:Security:Privileges:Foreign Key (CPU Jan 2015)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0374"
},
{
"category": "external",
"summary": "RHBZ#1184553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1184553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0374",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0374"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0374",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0374"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL"
}
],
"release_date": "2015-01-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-05-05T13:30:45+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 6 runs on Red Hat Enterprise Linux 7.1.\n\nThis update is available through \u0027yum update\u0027 on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see:\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html\n\nRed Hat Enterprise Linux OpenStack Platform 6 documentation is available at:\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform\n\nThe Red Hat Enterprise Linux OpenStack Platform 6 Release Notes (see the References section) contain the following:\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 6, including which channels need to be enabled and disabled.",
"product_ids": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2015:0928"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "mysql: unspecified vulnerability related to Server:Security:Privileges:Foreign Key (CPU Jan 2015)"
},
{
"cve": "CVE-2015-0381",
"discovery_date": "2015-01-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1184554"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a different vulnerability than CVE-2015-0382.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified vulnerability related to Server:Replication (CPU Jan 2015)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0381"
},
{
"category": "external",
"summary": "RHBZ#1184554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1184554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0381",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0381"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0381",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0381"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL"
}
],
"release_date": "2015-01-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-05-05T13:30:45+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 6 runs on Red Hat Enterprise Linux 7.1.\n\nThis update is available through \u0027yum update\u0027 on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see:\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html\n\nRed Hat Enterprise Linux OpenStack Platform 6 documentation is available at:\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform\n\nThe Red Hat Enterprise Linux OpenStack Platform 6 Release Notes (see the References section) contain the following:\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 6, including which channels need to be enabled and disabled.",
"product_ids": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2015:0928"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: unspecified vulnerability related to Server:Replication (CPU Jan 2015)"
},
{
"cve": "CVE-2015-0382",
"discovery_date": "2015-01-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1184555"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a different vulnerability than CVE-2015-0381.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified vulnerability related to Server:Replication (CPU Jan 2015)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0382"
},
{
"category": "external",
"summary": "RHBZ#1184555",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1184555"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0382",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0382"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0382",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0382"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL"
}
],
"release_date": "2015-01-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-05-05T13:30:45+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 6 runs on Red Hat Enterprise Linux 7.1.\n\nThis update is available through \u0027yum update\u0027 on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see:\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html\n\nRed Hat Enterprise Linux OpenStack Platform 6 documentation is available at:\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform\n\nThe Red Hat Enterprise Linux OpenStack Platform 6 Release Notes (see the References section) contain the following:\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 6, including which channels need to be enabled and disabled.",
"product_ids": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2015:0928"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: unspecified vulnerability related to Server:Replication (CPU Jan 2015)"
},
{
"cve": "CVE-2015-0411",
"discovery_date": "2015-01-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1184560"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Server : Security : Encryption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified vulnerability related to Server:Security:Encryption (CPU Jan 2015)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0411"
},
{
"category": "external",
"summary": "RHBZ#1184560",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1184560"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0411",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0411"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0411",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0411"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL"
}
],
"release_date": "2015-01-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-05-05T13:30:45+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 6 runs on Red Hat Enterprise Linux 7.1.\n\nThis update is available through \u0027yum update\u0027 on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see:\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html\n\nRed Hat Enterprise Linux OpenStack Platform 6 documentation is available at:\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform\n\nThe Red Hat Enterprise Linux OpenStack Platform 6 Release Notes (see the References section) contain the following:\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 6, including which channels need to be enabled and disabled.",
"product_ids": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2015:0928"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: unspecified vulnerability related to Server:Security:Encryption (CPU Jan 2015)"
},
{
"cve": "CVE-2015-0432",
"discovery_date": "2015-01-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1184561"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mysql: unspecified vulnerability related to Server:InnoDB:DDL:Foreign Key (CPU Jan 2015)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0432"
},
{
"category": "external",
"summary": "RHBZ#1184561",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1184561"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0432",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0432"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0432",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0432"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL"
}
],
"release_date": "2015-01-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-05-05T13:30:45+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 6 runs on Red Hat Enterprise Linux 7.1.\n\nThis update is available through \u0027yum update\u0027 on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see:\nhttps://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html\n\nRed Hat Enterprise Linux OpenStack Platform 6 documentation is available at:\nhttps://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform\n\nThe Red Hat Enterprise Linux OpenStack Platform 6 Release Notes (see the References section) contain the following:\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 6, including which channels need to be enabled and disabled.",
"product_ids": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2015:0928"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.noarch",
"7Server-RH7-RHOS-6.0:diskimage-builder-0:0.1.34-21.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-1:5.5.41-2.el7ost.src",
"7Server-RH7-RHOS-6.0:mariadb-galera-common-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-debuginfo-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:mariadb-galera-server-1:5.5.41-2.el7ost.x86_64",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-selinux-0:0.6.29-1.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-0:2014.2.3-3.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-trove-api-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-common-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-conductor-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-guestagent-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-trove-taskmanager-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-trove-0:2014.2.3-3.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.noarch",
"7Server-RH7-RHOS-6.0:redhat-access-plugin-openstack-0:6.0.3-1.el7ost.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "mysql: unspecified vulnerability related to Server:InnoDB:DDL:Foreign Key (CPU Jan 2015)"
}
]
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.