VYPR

rpm package

suse/openstack-ceilometer&distro=SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5

pkg:rpm/suse/openstack-ceilometer&distro=SUSE%20Cloud%20Compute%20Node%20for%20SUSE%20Linux%20Enterprise%2012%205

Vulnerabilities (1)

  • CVE-2015-0259Apr 1, 2015
    affected < 2014.2.4.dev18-3.2fixed 2014.2.4.dev18-3.2

    OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows remote attackers to hijack the authentication of users for access to consoles via a crafted webpage.