Explore top 10 tips to secure your open-source projects now. Read More
×
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
Ironic provides bare metal provisioning for OpenStack nodes.
It was discovered that enabling debug mode in openstack-ironic-discoverd
also enables debug mode in the underlying Flask framework. If errors are
encountered while Flask is in debug mode, a user experiencing an error may
be able to access the debug console (effectively, a command shell).
(CVE-2015-5306)
All openstack-ironic-discoverd users are advised to upgrade to these
updated packages, which correct this issue.
https://access.redhat.com/security/cve/CVE-2015-5306 https://access.redhat.com/security/updates/classification#important
OpenStack 7.0 Director for RHEL 7:
Source:
openstack-ironic-discoverd-1.1.0-8.el7ost.src.rpm
noarch:
openstack-ironic-discoverd-1.1.0-8.el7ost.noarch.rpm
openstack-ironic-discoverd-ramdisk-1.1.0-8.el7ost.noarch.rpm
python-ironic-discoverd-1.1.0-8.el7ost.noarch.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key
Updated openstack-ironic-discoverd packages that fix one security issue arenow available for Red Hat Enterprise Linux OpenStack Platform 7.0.Red Hat Product Security has rated this update as having Important securityimpact. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available from the CVE link in theReferences section.
OpenStack 7.0 Director for RHEL 7 - noarch
1256421 - Incorrect RAM report
1273698 - CVE-2015-5306 openstack-ironic-discoverd: potential remote code execution with debug mode enabled
Get the latest Linux and open source security news straight to your inbox.