Search CVE reports
11 – 14 of 14 results
The clear_volume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through 2013.1.2 does not properly clear data when deleting a snapshot, which allows local users to obtain sensitive information via unspecified vectors.
1 affected package
cinder
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cinder | — | — | — | — |
HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates.
6 affected packages
swift, cinder, keystone, nova, python-keystoneclient, quantum
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| swift | — | — | — | — |
| cinder | — | — | — | — |
| keystone | — | — | — | — |
| nova | — | — | — | — |
| python-keystoneclient | — | — | — | — |
| quantum | — | — | — | — |
Some fixes available 10 of 12
The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to...
5 affected packages
cinder, keystone, nova, python-django, quantum
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cinder | — | — | — | — |
| keystone | — | — | — | — |
| nova | — | — | — | — |
| python-django | — | — | — | — |
| quantum | — | — | — | — |
The OpenStack Nova (python-nova) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.2 and 1:2014.1-0 before 1:2014.1-0ubuntu1.2 and Openstack Cinder (python-cinder) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.1 and 1:2014.1-0...
2 affected packages
cinder, nova
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cinder | — | — | — | — |
| nova | — | — | — | — |