rpm package
suse/storm&distro=SUSE OpenStack Cloud 7
pkg:rpm/suse/storm&distro=SUSE%20OpenStack%20Cloud%207
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-9799 | Hig | 8.8 | < 1.0.5-5.3 | 1.0.5-5.3 | Aug 9, 2017 | It was found that under some situations and configurations of Apache Storm 1.x before 1.0.4 and 1.1.x before 1.1.1, it is theoretically possible for the owner of a topology to trick the supervisor to launch a worker as a different, non-root, user. In the worst case this could lea |
- affected < 1.0.5-5.3fixed 1.0.5-5.3
It was found that under some situations and configurations of Apache Storm 1.x before 1.0.4 and 1.1.x before 1.1.1, it is theoretically possible for the owner of a topology to trick the supervisor to launch a worker as a different, non-root, user. In the worst case this could lea