rpm package
suse/ardana-octavia&distro=SUSE OpenStack Cloud 8
pkg:rpm/suse/ardana-octavia&distro=SUSE%20OpenStack%20Cloud%208
Vulnerabilities (63)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-5637 | Hig | 7.5 | < 8.0+git.1585171918.418f5cf-3.26.1 | 8.0+git.1585171918.418f5cf-3.26.1 | Oct 10, 2017 | Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests. Apache ZooKeeper thru version 3.4.9 and 3.5.2 suffer from this issue, f | |
| CVE-2016-10127 | Cri | 9.0 | < 8.0+git.1568373448.bcaee7e-3.20.3 | 8.0+git.1568373448.bcaee7e-3.20.3 | Mar 3, 2017 | PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response. | |
| CVE-2015-3448 | — | < 8.0+git.1568373448.bcaee7e-3.20.3 | 8.0+git.1568373448.bcaee7e-3.20.3 | Apr 29, 2015 | REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log. |
- affected < 8.0+git.1585171918.418f5cf-3.26.1fixed 8.0+git.1585171918.418f5cf-3.26.1
Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests. Apache ZooKeeper thru version 3.4.9 and 3.5.2 suffer from this issue, f
- affected < 8.0+git.1568373448.bcaee7e-3.20.3fixed 8.0+git.1568373448.bcaee7e-3.20.3
PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response.
- CVE-2015-3448Apr 29, 2015affected < 8.0+git.1568373448.bcaee7e-3.20.3fixed 8.0+git.1568373448.bcaee7e-3.20.3
REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.
Page 4 of 4