VYPR

rpm package

suse/ardana-cobbler&distro=HPE Helion OpenStack 8

pkg:rpm/suse/ardana-cobbler&distro=HPE%20Helion%20OpenStack%208

Vulnerabilities (45)

  • CVE-2018-14574MedAug 3, 2018
    affected < 8.0+git.1550694449.df88054-3.38.1fixed 8.0+git.1550694449.df88054-3.38.1

    django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect.

  • CVE-2016-8611MedJul 31, 2018
    affected < 8.0+git.1534780521.780753b-3.29.2fixed 8.0+git.1534780521.780753b-3.29.2

    A vulnerability was found in Openstack Glance. No limits are enforced within the Glance image service for both v1 and v2 `/images` API POST method for authenticated users, resulting in possible denial of service attacks through database table saturation.

  • CVE-2017-11481MedDec 8, 2017
    affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3

    Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.

  • CVE-2017-11499HigJul 25, 2017
    affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3

    Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building

  • CVE-2017-5929CriMar 13, 2017
    affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3

    QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.

Page 3 of 3