VYPR

rpm package

suse/crowbar-barclamp-nova&distro=SUSE OpenStack Cloud 5

pkg:rpm/suse/crowbar-barclamp-nova&distro=SUSE%20OpenStack%20Cloud%205

Vulnerabilities (1)

  • CVE-2015-0259Apr 1, 2015
    affected < 1.9+git.1438201051.f8b5f34-9.8fixed 1.9+git.1438201051.f8b5f34-9.8

    OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows remote attackers to hijack the authentication of users for access to consoles via a crafted webpage.