Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 531
Alerts This Week
Warning Icon 1 531

Fedora 23: 2015-16ecacb90b Critical: OpenStack Ironic Discoverd Remote Exec

fedora
Calendar Grey November 12, 2015
Scroller Fedora Esm H88
Urgent security patch released for openstack-ironic-discoverd in Fedora 23 tackling remote code execution vulnerability.
Release 1.1.1, security fix for CVE-2015-5306

Summary

ironic-discoverd is a service for discovering hardware properties for a node

managed by OpenStack Ironic. Hardware introspection or hardware properties

discovery is a process of getting hardware parameters required for scheduling

from a bare metal node, given it's power management credentials (e.g. IPMI

address, user name and password).

This package contains main executable and service files.

Update Information:

Release 1.1.1, security fix for CVE-2015-5306

Change Log

References


[ 1 ] Bug #1273698 - CVE-2015-5306 openstack-ironic-discoverd: potential remote code execution with debug mode enabled https://bugzilla.redhat.com/show_bug.cgi?id=1273698

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update openstack-ironic-discoverd' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: openstack-ironic-discoverd
Product: Fedora 23
Version: 1.1.1
Release: 1.fc23
URL: Summary : Hardware introspection service for OpenStack Ironic

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.