rpm package
suse/ardana-cobbler&distro=HPE Helion OpenStack 8
pkg:rpm/suse/ardana-cobbler&distro=HPE%20Helion%20OpenStack%208
Vulnerabilities (45)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-34265 | — | < 8.0+git.1660773402.d845a45-3.47.1 | 8.0+git.1660773402.d845a45-3.47.1 | Jul 4, 2022 | An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name value. Applications that constrain the lookup name and kind choice to a known safe l | ||
| CVE-2022-28346 | — | < 8.0+git.1660773402.d845a45-3.47.1 | 8.0+git.1660773402.d845a45-3.47.1 | Apr 12, 2022 | An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs. | ||
| CVE-2022-24790 | — | < 8.0+git.1660773402.d845a45-3.47.1 | 8.0+git.1660773402.d845a45-3.47.1 | Mar 30, 2022 | Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request sta | ||
| CVE-2021-44716 | — | < 8.0+git.1660773402.d845a45-3.47.1 | 8.0+git.1660773402.d845a45-3.47.1 | Jan 1, 2022 | net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests. | ||
| CVE-2021-39226 | — | KEV | < 8.0+git.1660773402.d845a45-3.47.1 | 8.0+git.1660773402.d845a45-3.47.1 | Oct 5, 2021 | Grafana is an open source data visualization platform. In affected versions unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths: /dashboard/snapshot/:key, or /api/snapshots/:key. If the snapshot "public | |
| CVE-2021-33203 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Jun 8, 2021 | Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs te | ||
| CVE-2021-33571 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Jun 8, 2021 | In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4 | ||
| CVE-2021-21419 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | May 7, 2021 | Eventlet is a concurrent networking library for Python. A websocket peer may exhaust memory on Eventlet side by sending very large websocket frames. Malicious peer may exhaust memory on Eventlet side by sending highly compressed data frame. A patch in version 0.31.0 restricts web | ||
| CVE-2021-31542 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | May 5, 2021 | In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names. | ||
| CVE-2021-28658 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Apr 6, 2021 | In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability. | ||
| CVE-2021-27358 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Mar 18, 2021 | The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set. | ||
| CVE-2019-25025 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Mar 5, 2021 | The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepanci | ||
| CVE-2021-23336 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Feb 15, 2021 | The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When | ||
| CVE-2020-17516 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Feb 3, 2021 | Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc' or 'rack' internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted | ||
| CVE-2021-21238 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Jan 21, 2021 | PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Sig | ||
| CVE-2021-21239 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Jan 21, 2021 | PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted | ||
| CVE-2020-26247 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Dec 30, 2020 | Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers with XPath and CSS selector support. In Nokogiri before version 1.11.0.rc4 there is an XXE vulnerability. XML Schemas parsed by Nokogiri::XML::Schema are trusted by default, allowing external resources to be acces | ||
| CVE-2020-29651 | — | < 8.0+git.1614096566.e8c2b27-3.44.3 | 8.0+git.1614096566.e8c2b27-3.44.3 | Dec 9, 2020 | A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality. | ||
| CVE-2018-17954 | — | < 8.0+git.1575037115.0326803-3.41.3 | 8.0+git.1575037115.0326803-3.41.3 | Apr 3, 2020 | An Improper Privilege Management in crowbar of SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud 9, SUSE OpenStack Cloud Crowbar 8, SUSE OpenStack Cloud Crowbar 9 allows root users on any crowbar managed node to cause become root on any other node. This issue a | ||
| CVE-2020-1734 | — | < 8.0+git.1660773402.d845a45-3.47.1 | 8.0+git.1660773402.d845a45-3.47.1 | Mar 3, 2020 | A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitr |
- CVE-2022-34265Jul 4, 2022affected < 8.0+git.1660773402.d845a45-3.47.1fixed 8.0+git.1660773402.d845a45-3.47.1
An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name value. Applications that constrain the lookup name and kind choice to a known safe l
- CVE-2022-28346Apr 12, 2022affected < 8.0+git.1660773402.d845a45-3.47.1fixed 8.0+git.1660773402.d845a45-3.47.1
An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.
- CVE-2022-24790Mar 30, 2022affected < 8.0+git.1660773402.d845a45-3.47.1fixed 8.0+git.1660773402.d845a45-3.47.1
Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request sta
- CVE-2021-44716Jan 1, 2022affected < 8.0+git.1660773402.d845a45-3.47.1fixed 8.0+git.1660773402.d845a45-3.47.1
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.
- affected < 8.0+git.1660773402.d845a45-3.47.1fixed 8.0+git.1660773402.d845a45-3.47.1
Grafana is an open source data visualization platform. In affected versions unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths: /dashboard/snapshot/:key, or /api/snapshots/:key. If the snapshot "public
- CVE-2021-33203Jun 8, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs te
- CVE-2021-33571Jun 8, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4
- CVE-2021-21419May 7, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
Eventlet is a concurrent networking library for Python. A websocket peer may exhaust memory on Eventlet side by sending very large websocket frames. Malicious peer may exhaust memory on Eventlet side by sending highly compressed data frame. A patch in version 0.31.0 restricts web
- CVE-2021-31542May 5, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
- CVE-2021-28658Apr 6, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.
- CVE-2021-27358Mar 18, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.
- CVE-2019-25025Mar 5, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepanci
- CVE-2021-23336Feb 15, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When
- CVE-2020-17516Feb 3, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc' or 'rack' internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted
- CVE-2021-21238Jan 21, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Sig
- CVE-2021-21239Jan 21, 2021affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted
- CVE-2020-26247Dec 30, 2020affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers with XPath and CSS selector support. In Nokogiri before version 1.11.0.rc4 there is an XXE vulnerability. XML Schemas parsed by Nokogiri::XML::Schema are trusted by default, allowing external resources to be acces
- CVE-2020-29651Dec 9, 2020affected < 8.0+git.1614096566.e8c2b27-3.44.3fixed 8.0+git.1614096566.e8c2b27-3.44.3
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.
- CVE-2018-17954Apr 3, 2020affected < 8.0+git.1575037115.0326803-3.41.3fixed 8.0+git.1575037115.0326803-3.41.3
An Improper Privilege Management in crowbar of SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud 9, SUSE OpenStack Cloud Crowbar 8, SUSE OpenStack Cloud Crowbar 9 allows root users on any crowbar managed node to cause become root on any other node. This issue a
- CVE-2020-1734Mar 3, 2020affected < 8.0+git.1660773402.d845a45-3.47.1fixed 8.0+git.1660773402.d845a45-3.47.1
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitr
Page 1 of 3