rpm package
suse/caasp-openstack-heat-templates&distro=SUSE OpenStack Cloud Crowbar 9
pkg:rpm/suse/caasp-openstack-heat-templates&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-11068 | — | < 1.0+git.1560518045.ad7dc6d-3.3.5 | 1.0+git.1560518045.ad7dc6d-3.3.5 | Apr 10, 2019 | libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded. | ||
| CVE-2019-10876 | — | < 1.0+git.1560518045.ad7dc6d-3.3.5 | 1.0+git.1560518045.ad7dc6d-3.3.5 | Apr 5, 2019 | An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes | ||
| CVE-2018-19039 | — | < 1.0+git.1560518045.ad7dc6d-3.3.5 | 1.0+git.1560518045.ad7dc6d-3.3.5 | Dec 13, 2018 | Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions. |
- CVE-2019-11068Apr 10, 2019affected < 1.0+git.1560518045.ad7dc6d-3.3.5fixed 1.0+git.1560518045.ad7dc6d-3.3.5
libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.
- CVE-2019-10876Apr 5, 2019affected < 1.0+git.1560518045.ad7dc6d-3.3.5fixed 1.0+git.1560518045.ad7dc6d-3.3.5
An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes
- CVE-2018-19039Dec 13, 2018affected < 1.0+git.1560518045.ad7dc6d-3.3.5fixed 1.0+git.1560518045.ad7dc6d-3.3.5
Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.