rhba-2015_1762
Vulnerability from csaf_redhat
Published
2015-09-10 11:45
Modified
2024-11-14 18:07
Summary
Red Hat Bug Fix Advisory: Red Hat Enterprise Linux OpenStack Platform Bug Fix and Enhancement Advisory
Notes
Topic
Updated mariadb-galera, rabbitmq-server, openvswitch, openstack-selinux, openstack-trove, sos-plugins-openstack, and python-eventlet packages that resolve various issues are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7.
Details
Red Hat Enterprise Linux OpenStack Platform provides the facilities for
building a private or public infrastructure-as-a-service (IaaS) cloud
running on commonly available physical hardware.
This update addresses the following issues:
* Previously, a call to the "sed" command within mysqld_safe.sh which was used to certain command line arguments failed to accommodate arguments which included a slash, such as the paths to the SSL key and certificate files to pass through this function. As a consequence, the mysqld_safe.sh script produced warnings of the form "unknown option to `s'". The script continued to work correctly otherwise as these arguments are not actually needed in this specific context. With this update, the call to sed has been corrected such that the SSL arguments which include slashes are properly interpreted. As a result, the warnings regarding sed are now resolved. (BZ#1134032)
* Prior to this update, SELinux was preventing neutron from using the file system. As a consequence, neutron failed to run. Now, an appropriate rule has been added to SELinux, which allows neutron to run with SELinux in enforcing mode. (BZ#1176830)
* With this release, mariadb-galera is rebased to version 5.5.42, fixing an issue where "duplicate key" errors would occur during INSERT statements, when performed during the period of time when database connectivity was moving to another Galera node, and when the first Galera node was entering a non-available state. (BZ#1240326)
* Previously, the GM process would send a message for all slaves to terminate once the master process terminated, but would not wait for confirmation that the slaves had received this message before terminating itself. As a result, a slave that did not receive the termination message would detect that the master GM process had terminated, and would promote itself to master, causing the previous master process to hang indefinitely.
With this update, the GM process now waits for its broadcast buffer to empty before terminating. This results in all slaves receiving the message to terminate, allowing the master process to terminate as expected. (BZ#1248081)
* The openvswitch packages have been upgraded to upstream version 2.3.2, which provides a number of bug fixes over the previous version. (BZ#1250220)
* The openstack-trove packages have been upgraded to upstream version 2014.1.5, which provides a number of bug fixes over the previous version. (BZ#1254705)
* The python-oslo-messaging packages have been upgraded to upstream version 1.3.1, which provides a number of bug fixes over the previous version. (BZ#1257640)
* Previously, there was a hot loop in the Send function if the connection was lost. As a consequence, the process consumed 100% CPU and hung indefinitely. To fix this problem, an upstream patch for the greenio module has been added, which allows the loop to exit if this condition happens. As a result, the process no longer consumes 100% CPU in a hot loop, and it does not hang. (BZ#1259841)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated mariadb-galera, rabbitmq-server, openvswitch, openstack-selinux, openstack-trove, sos-plugins-openstack, and python-eventlet packages that resolve various issues are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7.", "title": "Topic" }, { "category": "general", "text": "Red Hat Enterprise Linux OpenStack Platform provides the facilities for\nbuilding a private or public infrastructure-as-a-service (IaaS) cloud\nrunning on commonly available physical hardware.\n\nThis update addresses the following issues:\n\n* Previously, a call to the \"sed\" command within mysqld_safe.sh which was used to certain command line arguments failed to accommodate arguments which included a slash, such as the paths to the SSL key and certificate files to pass through this function. As a consequence, the mysqld_safe.sh script produced warnings of the form \"unknown option to `s\u0027\". The script continued to work correctly otherwise as these arguments are not actually needed in this specific context. With this update, the call to sed has been corrected such that the SSL arguments which include slashes are properly interpreted. As a result, the warnings regarding sed are now resolved. (BZ#1134032)\n\n* Prior to this update, SELinux was preventing neutron from using the file system. As a consequence, neutron failed to run. Now, an appropriate rule has been added to SELinux, which allows neutron to run with SELinux in enforcing mode. (BZ#1176830)\n\n* With this release, mariadb-galera is rebased to version 5.5.42, fixing an issue where \"duplicate key\" errors would occur during INSERT statements, when performed during the period of time when database connectivity was moving to another Galera node, and when the first Galera node was entering a non-available state. (BZ#1240326)\n\n* Previously, the GM process would send a message for all slaves to terminate once the master process terminated, but would not wait for confirmation that the slaves had received this message before terminating itself. As a result, a slave that did not receive the termination message would detect that the master GM process had terminated, and would promote itself to master, causing the previous master process to hang indefinitely. \nWith this update, the GM process now waits for its broadcast buffer to empty before terminating. This results in all slaves receiving the message to terminate, allowing the master process to terminate as expected. (BZ#1248081)\n\n* The openvswitch packages have been upgraded to upstream version 2.3.2, which provides a number of bug fixes over the previous version. (BZ#1250220)\n\n* The openstack-trove packages have been upgraded to upstream version 2014.1.5, which provides a number of bug fixes over the previous version. (BZ#1254705)\n\n* The python-oslo-messaging packages have been upgraded to upstream version 1.3.1, which provides a number of bug fixes over the previous version. (BZ#1257640)\n\n* Previously, there was a hot loop in the Send function if the connection was lost. As a consequence, the process consumed 100% CPU and hung indefinitely. To fix this problem, an upstream patch for the greenio module has been added, which allows the loop to exit if this condition happens. As a result, the process no longer consumes 100% CPU in a hot loop, and it does not hang. (BZ#1259841)", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHBA-2015:1762", "url": "https://access.redhat.com/errata/RHBA-2015:1762" }, { "category": "external", "summary": "https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform/5/html/Release_Notes/index.html", "url": "https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform/5/html/Release_Notes/index.html" }, { "category": "external", "summary": "1122569", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1122569" }, { "category": "external", "summary": "1134032", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1134032" }, { "category": "external", "summary": "1163421", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1163421" }, { "category": "external", "summary": "1176781", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176781" }, { "category": "external", "summary": "1176830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176830" }, { "category": "external", "summary": "1254705", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1254705" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhba-2015_1762.json" } ], "title": "Red Hat Bug Fix Advisory: Red Hat Enterprise Linux OpenStack Platform Bug Fix and Enhancement Advisory", "tracking": { "current_release_date": "2024-11-14T18:07:47+00:00", "generator": { "date": "2024-11-14T18:07:47+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHBA-2015:1762", "initial_release_date": "2015-09-10T11:45:31+00:00", "revision_history": [ { "date": "2015-09-10T11:45:31+00:00", "number": "1", "summary": "Initial version" }, { "date": "2015-09-10T11:45:31+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T18:07:47+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product": { "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:openstack:5::el7" } } } ], "category": "product_family", "name": "Red Hat OpenStack Platform" }, { "branches": [ { "category": "product_version", "name": "mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "product": { "name": "mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "product_id": "mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mariadb-galera-debuginfo@5.5.42-1.el7ost?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "product": { "name": "mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "product_id": "mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mariadb-galera-common@5.5.42-1.el7ost?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "product": { "name": "mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "product_id": "mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mariadb-galera-server@5.5.42-1.el7ost?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "product": { "name": "openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "product_id": "openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openvswitch@2.3.2-1.git20150730.el7_1?arch=x86_64" } } }, { "category": "product_version", "name": "openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "product": { "name": "openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "product_id": "openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openvswitch-debuginfo@2.3.2-1.git20150730.el7_1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "mariadb-galera-1:5.5.42-1.el7ost.src", "product": { "name": "mariadb-galera-1:5.5.42-1.el7ost.src", "product_id": "mariadb-galera-1:5.5.42-1.el7ost.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mariadb-galera@5.5.42-1.el7ost?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "rabbitmq-server-0:3.3.5-4.el7ost.src", "product": { "name": "rabbitmq-server-0:3.3.5-4.el7ost.src", "product_id": "rabbitmq-server-0:3.3.5-4.el7ost.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rabbitmq-server@3.3.5-4.el7ost?arch=src" } } }, { "category": "product_version", "name": "openvswitch-0:2.3.2-1.git20150730.el7_1.src", "product": { "name": "openvswitch-0:2.3.2-1.git20150730.el7_1.src", "product_id": "openvswitch-0:2.3.2-1.git20150730.el7_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/openvswitch@2.3.2-1.git20150730.el7_1?arch=src" } } }, { "category": "product_version", "name": "openstack-selinux-0:0.6.37-1.el7ost.src", "product": { "name": "openstack-selinux-0:0.6.37-1.el7ost.src", "product_id": "openstack-selinux-0:0.6.37-1.el7ost.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-selinux@0.6.37-1.el7ost?arch=src" } } }, { "category": "product_version", "name": "openstack-trove-0:2014.1.5-1.el7ost.src", "product": { "name": "openstack-trove-0:2014.1.5-1.el7ost.src", "product_id": "openstack-trove-0:2014.1.5-1.el7ost.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-trove@2014.1.5-1.el7ost?arch=src" } } }, { "category": "product_version", "name": "sos-plugins-openstack-0:2013.2-6.el7ost.src", "product": { "name": "sos-plugins-openstack-0:2013.2-6.el7ost.src", "product_id": "sos-plugins-openstack-0:2013.2-6.el7ost.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/sos-plugins-openstack@2013.2-6.el7ost?arch=src" } } }, { "category": "product_version", "name": "python-eventlet-0:0.14.0-4.el7ost.src", "product": { "name": "python-eventlet-0:0.14.0-4.el7ost.src", "product_id": "python-eventlet-0:0.14.0-4.el7ost.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-eventlet@0.14.0-4.el7ost?arch=src" } } }, { "category": "product_version", "name": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "product": { "name": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "product_id": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-oslo-messaging@1.3.1-1.g33f3b18.el7ost?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "rabbitmq-server-0:3.3.5-4.el7ost.noarch", "product": { "name": "rabbitmq-server-0:3.3.5-4.el7ost.noarch", "product_id": "rabbitmq-server-0:3.3.5-4.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rabbitmq-server@3.3.5-4.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "product": { "name": "python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "product_id": "python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-openvswitch@2.3.2-1.git20150730.el7_1?arch=noarch" } } }, { "category": "product_version", "name": "openstack-selinux-0:0.6.37-1.el7ost.noarch", "product": { "name": "openstack-selinux-0:0.6.37-1.el7ost.noarch", "product_id": "openstack-selinux-0:0.6.37-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-selinux@0.6.37-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "product": { "name": "openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "product_id": "openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-trove-guestagent@2014.1.5-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "product": { "name": "openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "product_id": "openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-trove-taskmanager@2014.1.5-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "openstack-trove-0:2014.1.5-1.el7ost.noarch", "product": { "name": "openstack-trove-0:2014.1.5-1.el7ost.noarch", "product_id": "openstack-trove-0:2014.1.5-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-trove@2014.1.5-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "product": { "name": "openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "product_id": "openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-trove-common@2014.1.5-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "product": { "name": "openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "product_id": "openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-trove-conductor@2014.1.5-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "product": { "name": "openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "product_id": "openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/openstack-trove-api@2014.1.5-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "python-trove-0:2014.1.5-1.el7ost.noarch", "product": { "name": "python-trove-0:2014.1.5-1.el7ost.noarch", "product_id": "python-trove-0:2014.1.5-1.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-trove@2014.1.5-1.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "rhos-log-collector-0:2013.2-6.el7ost.noarch", "product": { "name": "rhos-log-collector-0:2013.2-6.el7ost.noarch", "product_id": "rhos-log-collector-0:2013.2-6.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhos-log-collector@2013.2-6.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "python-eventlet-0:0.14.0-4.el7ost.noarch", "product": { "name": "python-eventlet-0:0.14.0-4.el7ost.noarch", "product_id": "python-eventlet-0:0.14.0-4.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-eventlet@0.14.0-4.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "product": { "name": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "product_id": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-oslo-messaging@1.3.1-1.g33f3b18.el7ost?arch=noarch" } } }, { "category": "product_version", "name": "python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "product": { "name": "python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "product_id": "python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/python-oslo-messaging-doc@1.3.1-1.g33f3b18.el7ost?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "mariadb-galera-1:5.5.42-1.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src" }, "product_reference": "mariadb-galera-1:5.5.42-1.el7ost.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "mariadb-galera-common-1:5.5.42-1.el7ost.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64" }, "product_reference": "mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64" }, "product_reference": "mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "mariadb-galera-server-1:5.5.42-1.el7ost.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64" }, "product_reference": "mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-selinux-0:0.6.37-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch" }, "product_reference": "openstack-selinux-0:0.6.37-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-selinux-0:0.6.37-1.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src" }, "product_reference": "openstack-selinux-0:0.6.37-1.el7ost.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-trove-0:2014.1.5-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch" }, "product_reference": "openstack-trove-0:2014.1.5-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-trove-0:2014.1.5-1.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src" }, "product_reference": "openstack-trove-0:2014.1.5-1.el7ost.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-trove-api-0:2014.1.5-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch" }, "product_reference": "openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-trove-common-0:2014.1.5-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch" }, "product_reference": "openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch" }, "product_reference": "openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch" }, "product_reference": "openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch" }, "product_reference": "openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openvswitch-0:2.3.2-1.git20150730.el7_1.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src" }, "product_reference": "openvswitch-0:2.3.2-1.git20150730.el7_1.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64" }, "product_reference": "openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64 as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64" }, "product_reference": "openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "python-eventlet-0:0.14.0-4.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch" }, "product_reference": "python-eventlet-0:0.14.0-4.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "python-eventlet-0:0.14.0-4.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src" }, "product_reference": "python-eventlet-0:0.14.0-4.el7ost.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch" }, "product_reference": "python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch" }, "product_reference": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src" }, "product_reference": "python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch" }, "product_reference": "python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "python-trove-0:2014.1.5-1.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch" }, "product_reference": "python-trove-0:2014.1.5-1.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "rabbitmq-server-0:3.3.5-4.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch" }, "product_reference": "rabbitmq-server-0:3.3.5-4.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "rabbitmq-server-0:3.3.5-4.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src" }, "product_reference": "rabbitmq-server-0:3.3.5-4.el7ost.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "rhos-log-collector-0:2013.2-6.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch" }, "product_reference": "rhos-log-collector-0:2013.2-6.el7ost.noarch", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" }, { "category": "default_component_of", "full_product_name": { "name": "sos-plugins-openstack-0:2013.2-6.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "product_id": "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" }, "product_reference": "sos-plugins-openstack-0:2013.2-6.el7ost.src", "relates_to_product_reference": "7Server-RH7-RHOS-5.0" } ] }, "vulnerabilities": [ { "cve": "CVE-2015-0433", "discovery_date": "2015-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1212776" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to InnoDB : DML.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: unspecified vulnerability related to Server:InnoDB:DML (CPU April 2015)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0433" }, { "category": "external", "summary": "RHBZ#1212776", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1212776" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL" } ], "release_date": "2015-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-09-10T11:45:31+00:00", "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7 runs on Red Hat Enterprise Linux 7.1.\n\nThe Red Hat Enterprise Linux OpenStack Platform 5 for RHEL 7 Release Notes (see the References section) contain the following:\n* An explanation of the way in which the provided components interact to form a working cloud computing environment.\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7, including which channels need to be enabled and disabled.\n\nThis update is available through the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258", "product_ids": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHBA-2015:1762" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: unspecified vulnerability related to Server:InnoDB:DML (CPU April 2015)" }, { "cve": "CVE-2015-0441", "discovery_date": "2015-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1212777" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Encryption.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: unspecified vulnerability related to Server:Security:Encryption (CPU April 2015)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0441" }, { "category": "external", "summary": "RHBZ#1212777", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1212777" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL" } ], "release_date": "2015-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-09-10T11:45:31+00:00", "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7 runs on Red Hat Enterprise Linux 7.1.\n\nThe Red Hat Enterprise Linux OpenStack Platform 5 for RHEL 7 Release Notes (see the References section) contain the following:\n* An explanation of the way in which the provided components interact to form a working cloud computing environment.\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7, including which channels need to be enabled and disabled.\n\nThis update is available through the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258", "product_ids": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHBA-2015:1762" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: unspecified vulnerability related to Server:Security:Encryption (CPU April 2015)" }, { "cve": "CVE-2015-2568", "discovery_date": "2015-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1212763" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: unspecified vulnerability related to Server:Security:Privileges (CPU April 2015)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-2568" }, { "category": "external", "summary": "RHBZ#1212763", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1212763" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-2568", "url": "https://www.cve.org/CVERecord?id=CVE-2015-2568" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2568", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2568" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL" } ], "release_date": "2015-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-09-10T11:45:31+00:00", "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7 runs on Red Hat Enterprise Linux 7.1.\n\nThe Red Hat Enterprise Linux OpenStack Platform 5 for RHEL 7 Release Notes (see the References section) contain the following:\n* An explanation of the way in which the provided components interact to form a working cloud computing environment.\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7, including which channels need to be enabled and disabled.\n\nThis update is available through the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258", "product_ids": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHBA-2015:1762" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: unspecified vulnerability related to Server:Security:Privileges (CPU April 2015)" }, { "cve": "CVE-2015-2573", "discovery_date": "2015-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1212783" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: unspecified vulnerability related to Server:DDL (CPU April 2015)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-2573" }, { "category": "external", "summary": "RHBZ#1212783", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1212783" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-2573", "url": "https://www.cve.org/CVERecord?id=CVE-2015-2573" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2573", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2573" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL" } ], "release_date": "2015-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-09-10T11:45:31+00:00", "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nRed Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7 runs on Red Hat Enterprise Linux 7.1.\n\nThe Red Hat Enterprise Linux OpenStack Platform 5 for RHEL 7 Release Notes (see the References section) contain the following:\n* An explanation of the way in which the provided components interact to form a working cloud computing environment.\n* Technology Previews, Recommended Practices, and Known Issues.\n* The channels required for Red Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7, including which channels need to be enabled and disabled.\n\nThis update is available through the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258", "product_ids": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHBA-2015:1762" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "7Server-RH7-RHOS-5.0:mariadb-galera-1:5.5.42-1.el7ost.src", "7Server-RH7-RHOS-5.0:mariadb-galera-common-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-debuginfo-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:mariadb-galera-server-1:5.5.42-1.el7ost.x86_64", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-selinux-0:0.6.37-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-0:2014.1.5-1.el7ost.src", "7Server-RH7-RHOS-5.0:openstack-trove-api-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-common-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-conductor-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-guestagent-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openstack-trove-taskmanager-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.src", "7Server-RH7-RHOS-5.0:openvswitch-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:openvswitch-debuginfo-0:2.3.2-1.git20150730.el7_1.x86_64", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-eventlet-0:0.14.0-4.el7ost.src", "7Server-RH7-RHOS-5.0:python-openvswitch-0:2.3.2-1.git20150730.el7_1.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-oslo-messaging-0:1.3.1-1.g33f3b18.el7ost.src", "7Server-RH7-RHOS-5.0:python-oslo-messaging-doc-0:1.3.1-1.g33f3b18.el7ost.noarch", "7Server-RH7-RHOS-5.0:python-trove-0:2014.1.5-1.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.noarch", "7Server-RH7-RHOS-5.0:rabbitmq-server-0:3.3.5-4.el7ost.src", "7Server-RH7-RHOS-5.0:rhos-log-collector-0:2013.2-6.el7ost.noarch", "7Server-RH7-RHOS-5.0:sos-plugins-openstack-0:2013.2-6.el7ost.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: unspecified vulnerability related to Server:DDL (CPU April 2015)" } ] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.