rpm package
suse/crowbar-openstack&distro=SUSE OpenStack Cloud 7
pkg:rpm/suse/crowbar-openstack&distro=SUSE%20OpenStack%20Cloud%207
Vulnerabilities (72)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-33203 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | Jun 8, 2021 | Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs te | ||
| CVE-2021-33571 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | Jun 8, 2021 | In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4 | ||
| CVE-2020-10743 | — | < 4.0+git.1589804581.9972163f0-9.71.4 | 4.0+git.1589804581.9972163f0-9.71.4 | Jun 2, 2021 | It was discovered that OpenShift Container Platform's (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. This flaw allows an attacker to trick a user into performing arbitrary actions in OCP's distribution of Kibana, | ||
| CVE-2021-31542 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | May 5, 2021 | In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names. | ||
| CVE-2021-28658 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | Apr 6, 2021 | In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability. | ||
| CVE-2021-27358 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | Mar 18, 2021 | The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set. | ||
| CVE-2019-25025 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | Mar 5, 2021 | The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepanci | ||
| CVE-2021-3281 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | Feb 2, 2021 | In Django 2.2 before 2.2.18, 3.0 before 3.0.12, and 3.1 before 3.1.6, the django.utils.archive.extract method (used by "startapp --template" and "startproject --template") allows directory traversal via an archive with absolute paths or relative paths with dot segments. | ||
| CVE-2020-29651 | — | < 4.0+git.1616146720.44daffca0-9.81.2 | 4.0+git.1616146720.44daffca0-9.81.2 | Dec 9, 2020 | A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality. | ||
| CVE-2019-20933 | — | < 4.0+git.1604938545.30c10db18-9.77.1 | 4.0+git.1604938545.30c10db18-9.77.1 | Nov 19, 2020 | InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (aka shared secret). | ||
| CVE-2020-24303 | — | < 4.0+git.1604938545.30c10db18-9.77.1 | 4.0+git.1604938545.30c10db18-9.77.1 | Oct 28, 2020 | Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource. | ||
| CVE-2020-26137 | — | < 4.0+git.1604938545.30c10db18-9.77.1 | 4.0+git.1604938545.30c10db18-9.77.1 | Sep 29, 2020 | urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116. | ||
| CVE-2020-17376 | — | < 4.0+git.1599037255.25b759234-9.74.4 | 4.0+git.1599037255.25b759234-9.74.4 | Aug 26, 2020 | An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that shar | ||
| CVE-2020-11110 | — | < 4.0+git.1599037255.25b759234-9.74.4 | 4.0+git.1599037255.25b759234-9.74.4 | Jul 27, 2020 | Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot. | ||
| CVE-2020-10177 | — | < 4.0+git.1599037255.25b759234-9.74.4 | 4.0+git.1599037255.25b759234-9.74.4 | Jun 25, 2020 | Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c. | ||
| CVE-2020-10994 | — | < 4.0+git.1599037255.25b759234-9.74.4 | 4.0+git.1599037255.25b759234-9.74.4 | Jun 25, 2020 | In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file. | ||
| CVE-2020-10378 | — | < 4.0+git.1599037255.25b759234-9.74.4 | 4.0+git.1599037255.25b759234-9.74.4 | Jun 25, 2020 | In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer. | ||
| CVE-2020-13379 | — | < 4.0+git.1589804581.9972163f0-9.71.4 | 4.0+git.1589804581.9972163f0-9.71.4 | Jun 3, 2020 | The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information abo | ||
| CVE-2020-13596 | — | < 4.0+git.1589804581.9972163f0-9.71.4 | 4.0+git.1589804581.9972163f0-9.71.4 | Jun 3, 2020 | An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility of an XSS attack. | ||
| CVE-2020-13254 | — | < 4.0+git.1589804581.9972163f0-9.71.4 | 4.0+git.1589804581.9972163f0-9.71.4 | Jun 3, 2020 | An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage. |
- CVE-2021-33203Jun 8, 2021affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs te
- CVE-2021-33571Jun 8, 2021affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4
- CVE-2020-10743Jun 2, 2021affected < 4.0+git.1589804581.9972163f0-9.71.4fixed 4.0+git.1589804581.9972163f0-9.71.4
It was discovered that OpenShift Container Platform's (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. This flaw allows an attacker to trick a user into performing arbitrary actions in OCP's distribution of Kibana,
- CVE-2021-31542May 5, 2021affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
- CVE-2021-28658Apr 6, 2021affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.
- CVE-2021-27358Mar 18, 2021affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.
- CVE-2019-25025Mar 5, 2021affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepanci
- CVE-2021-3281Feb 2, 2021affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
In Django 2.2 before 2.2.18, 3.0 before 3.0.12, and 3.1 before 3.1.6, the django.utils.archive.extract method (used by "startapp --template" and "startproject --template") allows directory traversal via an archive with absolute paths or relative paths with dot segments.
- CVE-2020-29651Dec 9, 2020affected < 4.0+git.1616146720.44daffca0-9.81.2fixed 4.0+git.1616146720.44daffca0-9.81.2
A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.
- CVE-2019-20933Nov 19, 2020affected < 4.0+git.1604938545.30c10db18-9.77.1fixed 4.0+git.1604938545.30c10db18-9.77.1
InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (aka shared secret).
- CVE-2020-24303Oct 28, 2020affected < 4.0+git.1604938545.30c10db18-9.77.1fixed 4.0+git.1604938545.30c10db18-9.77.1
Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource.
- CVE-2020-26137Sep 29, 2020affected < 4.0+git.1604938545.30c10db18-9.77.1fixed 4.0+git.1604938545.30c10db18-9.77.1
urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.
- CVE-2020-17376Aug 26, 2020affected < 4.0+git.1599037255.25b759234-9.74.4fixed 4.0+git.1599037255.25b759234-9.74.4
An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that shar
- CVE-2020-11110Jul 27, 2020affected < 4.0+git.1599037255.25b759234-9.74.4fixed 4.0+git.1599037255.25b759234-9.74.4
Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.
- CVE-2020-10177Jun 25, 2020affected < 4.0+git.1599037255.25b759234-9.74.4fixed 4.0+git.1599037255.25b759234-9.74.4
Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.
- CVE-2020-10994Jun 25, 2020affected < 4.0+git.1599037255.25b759234-9.74.4fixed 4.0+git.1599037255.25b759234-9.74.4
In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.
- CVE-2020-10378Jun 25, 2020affected < 4.0+git.1599037255.25b759234-9.74.4fixed 4.0+git.1599037255.25b759234-9.74.4
In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer.
- CVE-2020-13379Jun 3, 2020affected < 4.0+git.1589804581.9972163f0-9.71.4fixed 4.0+git.1589804581.9972163f0-9.71.4
The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information abo
- CVE-2020-13596Jun 3, 2020affected < 4.0+git.1589804581.9972163f0-9.71.4fixed 4.0+git.1589804581.9972163f0-9.71.4
An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility of an XSS attack.
- CVE-2020-13254Jun 3, 2020affected < 4.0+git.1589804581.9972163f0-9.71.4fixed 4.0+git.1589804581.9972163f0-9.71.4
An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage.
Page 1 of 4