rpm package
suse/ardana-neutron&distro=SUSE OpenStack Cloud 9
pkg:rpm/suse/ardana-neutron&distro=SUSE%20OpenStack%20Cloud%209
Vulnerabilities (63)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-13379 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jun 3, 2020 | The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information abo | ||
| CVE-2020-13596 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jun 3, 2020 | An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility of an XSS attack. | ||
| CVE-2020-13254 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jun 3, 2020 | An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage. | ||
| CVE-2018-18625 | — | < 9.0+git.1615223676.777f0b3-3.25.2 | 9.0+git.1615223676.777f0b3-3.25.2 | Jun 2, 2020 | Grafana 5.3.1 has XSS via a link on the "Dashboard > All Panels > General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. | ||
| CVE-2018-18624 | — | < 9.0+git.1615223676.777f0b3-3.25.2 | 9.0+git.1615223676.777f0b3-3.25.2 | Jun 2, 2020 | Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. | ||
| CVE-2018-18623 | — | < 9.0+git.1615223676.777f0b3-3.25.2 | 9.0+git.1615223676.777f0b3-3.25.2 | Jun 2, 2020 | Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. | ||
| CVE-2020-12052 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Apr 27, 2020 | Grafana version < 6.7.3 is vulnerable for annotation popup XSS. | ||
| CVE-2020-9543 | — | < 9.0+git.1587667603.507fb50-3.19.1 | 9.0+git.1587667603.507fb50-3.19.1 | Mar 12, 2020 | OpenStack Manila <7.4.1, >=8.0.0 <8.1.1, and >=9.0.0 <9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares o | ||
| CVE-2020-9402 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Mar 5, 2020 | Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possibl | ||
| CVE-2020-5247 | — | < 9.0+git.1587667603.507fb50-3.19.1 | 9.0+git.1587667603.507fb50-3.19.1 | Feb 28, 2020 | In Puma (RubyGem) before 4.3.2 and before 3.12.3, if an application using Puma allows untrusted input in a response header, an attacker can use newline characters (i.e. `CR`, `LF` or`/r`, `/n`) to end the header and inject malicious content, such as additional headers or an entir | ||
| CVE-2020-7471 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Feb 3, 2020 | Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitabl | ||
| CVE-2019-16792 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jan 22, 2020 | Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally. | ||
| CVE-2019-19911 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jan 5, 2020 | There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. Ho | ||
| CVE-2020-5311 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jan 3, 2020 | libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow. | ||
| CVE-2020-5312 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jan 3, 2020 | libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow. | ||
| CVE-2020-5313 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Jan 3, 2020 | libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow. | ||
| CVE-2019-16789 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Dec 26, 2019 | In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests contain | ||
| CVE-2019-16785 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Dec 20, 2019 | Waitress through version 1.3.1 implemented a "MAY" part of the RFC7230 which states: "Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR." Unfortunately if | ||
| CVE-2019-16786 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Dec 20, 2019 | Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall through and use the Content-Length header instead. According to the HTTP standard Transfer-Encoding should be a comma separ | ||
| CVE-2019-19844 | — | < 9.0+git.1590756257.e09d54f-3.22.2 | 9.0+git.1590756257.e09d54f-3.22.2 | Dec 18, 2019 | Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of Unicode characters) would allow an attacker to be sent a password reset token fo |
- CVE-2020-13379Jun 3, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information abo
- CVE-2020-13596Jun 3, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility of an XSS attack.
- CVE-2020-13254Jun 3, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage.
- CVE-2018-18625Jun 2, 2020affected < 9.0+git.1615223676.777f0b3-3.25.2fixed 9.0+git.1615223676.777f0b3-3.25.2
Grafana 5.3.1 has XSS via a link on the "Dashboard > All Panels > General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
- CVE-2018-18624Jun 2, 2020affected < 9.0+git.1615223676.777f0b3-3.25.2fixed 9.0+git.1615223676.777f0b3-3.25.2
Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
- CVE-2018-18623Jun 2, 2020affected < 9.0+git.1615223676.777f0b3-3.25.2fixed 9.0+git.1615223676.777f0b3-3.25.2
Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
- CVE-2020-12052Apr 27, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
Grafana version < 6.7.3 is vulnerable for annotation popup XSS.
- CVE-2020-9543Mar 12, 2020affected < 9.0+git.1587667603.507fb50-3.19.1fixed 9.0+git.1587667603.507fb50-3.19.1
OpenStack Manila <7.4.1, >=8.0.0 <8.1.1, and >=9.0.0 <9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares o
- CVE-2020-9402Mar 5, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possibl
- CVE-2020-5247Feb 28, 2020affected < 9.0+git.1587667603.507fb50-3.19.1fixed 9.0+git.1587667603.507fb50-3.19.1
In Puma (RubyGem) before 4.3.2 and before 3.12.3, if an application using Puma allows untrusted input in a response header, an attacker can use newline characters (i.e. `CR`, `LF` or`/r`, `/n`) to end the header and inject malicious content, such as additional headers or an entir
- CVE-2020-7471Feb 3, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitabl
- CVE-2019-16792Jan 22, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally.
- CVE-2019-19911Jan 5, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. Ho
- CVE-2020-5311Jan 3, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
- CVE-2020-5312Jan 3, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.
- CVE-2020-5313Jan 3, 2020affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.
- CVE-2019-16789Dec 26, 2019affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests contain
- CVE-2019-16785Dec 20, 2019affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
Waitress through version 1.3.1 implemented a "MAY" part of the RFC7230 which states: "Although the line terminator for the start-line and header fields is the sequence CRLF, a recipient MAY recognize a single LF as a line terminator and ignore any preceding CR." Unfortunately if
- CVE-2019-16786Dec 20, 2019affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall through and use the Content-Length header instead. According to the HTTP standard Transfer-Encoding should be a comma separ
- CVE-2019-19844Dec 18, 2019affected < 9.0+git.1590756257.e09d54f-3.22.2fixed 9.0+git.1590756257.e09d54f-3.22.2
Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of Unicode characters) would allow an attacker to be sent a password reset token fo
Page 2 of 4