Search CVE reports
1 – 4 of 4 results
Some fixes available 1 of 9
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive...
2 affected packages
mistral, python-mistral-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mistral | Not affected | Not affected | Not affected | Not affected |
| python-mistral-lib | Not affected | Not affected | Not affected | Fixed |
Some fixes available 2 of 11
A flaw was found in openstack-mistral. By manipulating the SSH private key filename, the std.ssh action can be used to disclose the presence of arbitrary files within the filesystem of the executor running the action. Since...
1 affected package
mistral
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mistral | Not affected | Not affected | Not affected | Fixed |
Some fixes available 1 of 8
A Denial of Service (DoS) condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion...
1 affected package
mistral
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mistral | Not affected | Not affected | Not affected | Fixed |
An accessibility flaw was found in the OpenStack Workflow (mistral) service where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information.
1 affected package
mistral
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mistral | Vulnerable | Vulnerable | Vulnerable | Vulnerable |