rpm package

suse/venv-openstack-horizon&distro=SUSE OpenStack Cloud 9

pkg:rpm/suse/venv-openstack-horizon&distro=SUSE%20OpenStack%20Cloud%209

Vulnerabilities (115)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2020-8184	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jun 19, 2020	A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie prefix.
CVE-2020-10755	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jun 10, 2020	An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with th
CVE-2020-13379	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jun 3, 2020	The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information abo
CVE-2020-13596	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jun 3, 2020	An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility of an XSS attack.
CVE-2020-13254	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jun 3, 2020	An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage.
CVE-2018-18625	—	< 14.1.1~dev7-4.21.3	14.1.1~dev7-4.21.3	Jun 2, 2020	Grafana 5.3.1 has XSS via a link on the "Dashboard > All Panels > General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2018-18624	—	< 14.1.1~dev7-4.21.3	14.1.1~dev7-4.21.3	Jun 2, 2020	Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2018-18623	—	< 14.1.1~dev7-4.21.3	14.1.1~dev7-4.21.3	Jun 2, 2020	Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2020-12052	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Apr 27, 2020	Grafana version < 6.7.3 is vulnerable for annotation popup XSS.
CVE-2018-17954	—	< 14.1.1~dev1-4.14.2	14.1.1~dev1-4.14.2	Apr 3, 2020	An Improper Privilege Management in crowbar of SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud 9, SUSE OpenStack Cloud Crowbar 8, SUSE OpenStack Cloud Crowbar 9 allows root users on any crowbar managed node to cause become root on any other node. This issue a
CVE-2020-9543	—	< 14.1.1~dev1-4.16.1	14.1.1~dev1-4.16.1	Mar 12, 2020	OpenStack Manila <7.4.1, >=8.0.0 <8.1.1, and >=9.0.0 <9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares o
CVE-2020-9402	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Mar 5, 2020	Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possibl
CVE-2020-1734	—	< 14.1.1~dev11-4.41.1	14.1.1~dev11-4.41.1	Mar 3, 2020	A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitr
CVE-2020-5247	—	< 14.1.1~dev1-4.16.1	14.1.1~dev1-4.16.1	Feb 28, 2020	In Puma (RubyGem) before 4.3.2 and before 3.12.3, if an application using Puma allows untrusted input in a response header, an attacker can use newline characters (i.e. `CR`, `LF` or`/r`, `/n`) to end the header and inject malicious content, such as additional headers or an entir
CVE-2020-7471	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Feb 3, 2020	Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitabl
CVE-2019-16792	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jan 22, 2020	Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally.
CVE-2020-5390	—	< 14.1.1~dev7-4.23.2	14.1.1~dev7-4.23.2	Jan 13, 2020	PySAML2 before 5.0.0 does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping (XSW). The signature information and the node/object that is signed can be in different places and thus
CVE-2019-19911	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jan 5, 2020	There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. Ho
CVE-2020-5311	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jan 3, 2020	libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
CVE-2020-5312	—	< 14.1.1~dev6-4.18.3	14.1.1~dev6-4.18.3	Jan 3, 2020	libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.

CVE-2020-8184Jun 19, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie prefix.
CVE-2020-10755Jun 10, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with th
CVE-2020-13379Jun 3, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information abo
CVE-2020-13596Jun 3, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility of an XSS attack.
CVE-2020-13254Jun 3, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage.
CVE-2018-18625Jun 2, 2020
affected < 14.1.1~dev7-4.21.3fixed 14.1.1~dev7-4.21.3
Grafana 5.3.1 has XSS via a link on the "Dashboard > All Panels > General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2018-18624Jun 2, 2020
affected < 14.1.1~dev7-4.21.3fixed 14.1.1~dev7-4.21.3
Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2018-18623Jun 2, 2020
affected < 14.1.1~dev7-4.21.3fixed 14.1.1~dev7-4.21.3
Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2020-12052Apr 27, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
Grafana version < 6.7.3 is vulnerable for annotation popup XSS.
CVE-2018-17954Apr 3, 2020
affected < 14.1.1~dev1-4.14.2fixed 14.1.1~dev1-4.14.2
An Improper Privilege Management in crowbar of SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud 9, SUSE OpenStack Cloud Crowbar 8, SUSE OpenStack Cloud Crowbar 9 allows root users on any crowbar managed node to cause become root on any other node. This issue a
CVE-2020-9543Mar 12, 2020
affected < 14.1.1~dev1-4.16.1fixed 14.1.1~dev1-4.16.1
OpenStack Manila <7.4.1, >=8.0.0 <8.1.1, and >=9.0.0 <9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares o
CVE-2020-9402Mar 5, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possibl
CVE-2020-1734Mar 3, 2020
affected < 14.1.1~dev11-4.41.1fixed 14.1.1~dev11-4.41.1
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitr
CVE-2020-5247Feb 28, 2020
affected < 14.1.1~dev1-4.16.1fixed 14.1.1~dev1-4.16.1
In Puma (RubyGem) before 4.3.2 and before 3.12.3, if an application using Puma allows untrusted input in a response header, an attacker can use newline characters (i.e. `CR`, `LF` or`/r`, `/n`) to end the header and inject malicious content, such as additional headers or an entir
CVE-2020-7471Feb 3, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitabl
CVE-2019-16792Jan 22, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
Waitress through version 1.3.1 allows request smuggling by sending the Content-Length header twice. Waitress would header fold a double Content-Length header and due to being unable to cast the now comma separated value to an integer would set the Content-Length to 0 internally.
CVE-2020-5390Jan 13, 2020
affected < 14.1.1~dev7-4.23.2fixed 14.1.1~dev7-4.23.2
PySAML2 before 5.0.0 does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping (XSW). The signature information and the node/object that is signed can be in different places and thus
CVE-2019-19911Jan 5, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. Ho
CVE-2020-5311Jan 3, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
CVE-2020-5312Jan 3, 2020
affected < 14.1.1~dev6-4.18.3fixed 14.1.1~dev6-4.18.3
libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.

Page 4 of 6