rpm package
suse/venv-openstack-neutron&distro=HPE Helion OpenStack 8
pkg:rpm/suse/venv-openstack-neutron&distro=HPE%20Helion%20OpenStack%208
Vulnerabilities (144)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-11499 | Hig | 7.5 | < 11.0.9~dev69-13.38.3 | 11.0.9~dev69-13.38.3 | Jul 25, 2017 | Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building | |
| CVE-2017-5929 | Cri | 9.8 | < 11.0.9~dev69-13.38.3 | 11.0.9~dev69-13.38.3 | Mar 13, 2017 | QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components. | |
| CVE-2016-10127 | Cri | 9.0 | < 11.0.9~dev51-13.24.3 | 11.0.9~dev51-13.24.3 | Mar 3, 2017 | PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response. | |
| CVE-2015-3448 | — | < 11.0.9~dev42-13.22.1 | 11.0.9~dev42-13.22.1 | Apr 29, 2015 | REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log. |
- affected < 11.0.9~dev69-13.38.3fixed 11.0.9~dev69-13.38.3
Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building
- affected < 11.0.9~dev69-13.38.3fixed 11.0.9~dev69-13.38.3
QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.
- affected < 11.0.9~dev51-13.24.3fixed 11.0.9~dev51-13.24.3
PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response.
- CVE-2015-3448Apr 29, 2015affected < 11.0.9~dev42-13.22.1fixed 11.0.9~dev42-13.22.1
REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.
Page 8 of 8