rpm package
suse/calamari-clients&distro=SUSE Enterprise Storage 1.0
pkg:rpm/suse/calamari-clients&distro=SUSE%20Enterprise%20Storage%201.0
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-3010 | — | < 1.2.2+git.1428648634.40dfe5b-3.1 | 1.2.2+git.1428648634.40dfe5b-3.1 | Jun 16, 2015 | ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file. | ||
| CVE-2014-3598 | — | < 1.2.2+git.1428648634.40dfe5b-3.1 | 1.2.2+git.1428648634.40dfe5b-3.1 | May 1, 2015 | The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image. | ||
| CVE-2014-3589 | — | < 1.2.2+git.1428648634.40dfe5b-3.1 | 1.2.2+git.1428648634.40dfe5b-3.1 | Aug 25, 2014 | PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size. |
- CVE-2015-3010Jun 16, 2015affected < 1.2.2+git.1428648634.40dfe5b-3.1fixed 1.2.2+git.1428648634.40dfe5b-3.1
ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.
- CVE-2014-3598May 1, 2015affected < 1.2.2+git.1428648634.40dfe5b-3.1fixed 1.2.2+git.1428648634.40dfe5b-3.1
The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.
- CVE-2014-3589Aug 25, 2014affected < 1.2.2+git.1428648634.40dfe5b-3.1fixed 1.2.2+git.1428648634.40dfe5b-3.1
PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.