rpm package
suse/ardana-logging&distro=SUSE OpenStack Cloud 8
pkg:rpm/suse/ardana-logging&distro=SUSE%20OpenStack%20Cloud%208
Vulnerabilities (44)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-3498 | — | < 8.0+git.1544117621.1c9a954-3.18.1 | 8.0+git.1544117621.1c9a954-3.18.1 | Jan 9, 2019 | In Django 1.11.x before 1.11.18, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, an Improper Neutralization of Special Elements in Output Used by a Downstream Component issue exists in django.views.defaults.page_not_found(), leading to content spoofing (in a 404 error page) if a use | ||
| CVE-2018-14574 | — | < 8.0+git.1544117621.1c9a954-3.18.1 | 8.0+git.1544117621.1c9a954-3.18.1 | Aug 3, 2018 | django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect. | ||
| CVE-2016-8611 | — | < 8.0+git.1610573640.452aed1-3.27.1 | 8.0+git.1610573640.452aed1-3.27.1 | Jul 31, 2018 | A vulnerability was found in Openstack Glance. No limits are enforced within the Glance image service for both v1 and v2 `/images` API POST method for authenticated users, resulting in possible denial of service attacks through database table saturation. | ||
| CVE-2017-1000246 | Med | 5.3 | < 8.0+git.1591194866.b7375d0-3.24.1 | 8.0+git.1591194866.b7375d0-3.24.1 | Nov 17, 2017 | Python package pysaml2 version 4.4.0 and earlier reuses the initialization vector across encryptions in the IDP server, resulting in weak encryption of data. |
- CVE-2019-3498Jan 9, 2019affected < 8.0+git.1544117621.1c9a954-3.18.1fixed 8.0+git.1544117621.1c9a954-3.18.1
In Django 1.11.x before 1.11.18, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, an Improper Neutralization of Special Elements in Output Used by a Downstream Component issue exists in django.views.defaults.page_not_found(), leading to content spoofing (in a 404 error page) if a use
- CVE-2018-14574Aug 3, 2018affected < 8.0+git.1544117621.1c9a954-3.18.1fixed 8.0+git.1544117621.1c9a954-3.18.1
django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect.
- CVE-2016-8611Jul 31, 2018affected < 8.0+git.1610573640.452aed1-3.27.1fixed 8.0+git.1610573640.452aed1-3.27.1
A vulnerability was found in Openstack Glance. No limits are enforced within the Glance image service for both v1 and v2 `/images` API POST method for authenticated users, resulting in possible denial of service attacks through database table saturation.
- affected < 8.0+git.1591194866.b7375d0-3.24.1fixed 8.0+git.1591194866.b7375d0-3.24.1
Python package pysaml2 version 4.4.0 and earlier reuses the initialization vector across encryptions in the IDP server, resulting in weak encryption of data.
Page 3 of 3