rpm package

suse/python-oslo.db&distro=SUSE OpenStack Cloud 9

pkg:rpm/suse/python-oslo.db&distro=SUSE%20OpenStack%20Cloud%209

Vulnerabilities (3)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2019-11068	—	< 4.40.2-3.3.8	4.40.2-3.3.8	Apr 10, 2019	libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.
CVE-2019-10876	—	< 4.40.2-3.3.8	4.40.2-3.3.8	Apr 5, 2019	An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes
CVE-2018-19039	—	< 4.40.2-3.3.8	4.40.2-3.3.8	Dec 13, 2018	Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.

CVE-2019-11068Apr 10, 2019
affected < 4.40.2-3.3.8fixed 4.40.2-3.3.8
libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.
CVE-2019-10876Apr 5, 2019
affected < 4.40.2-3.3.8fixed 4.40.2-3.3.8
An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes
CVE-2018-19039Dec 13, 2018
affected < 4.40.2-3.3.8fixed 4.40.2-3.3.8
Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.