Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Red Hat OpenStack Platform 16: RHSA-2020-2165-01 Moderate Security Update

red hat
Calendar Grey May 14, 2020
Dist Redhat Esm H88
Red Hat Deploys Important Security Patch for openstack-magnum in OpenStack Platform 16 to tackle significant vulnerabilities.
An update for openstack-manila is now available for Red Hat OpenStack Platform 16 (Train)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Summary

OpenStack Shared Filesystem Service (Manila) provides services to manage network filesystems for use by Virtual Machine instances.
Security Fix(es):
* User with share-network UUID is able to show create and delete shares (CVE-2020-9543)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.

Topics%20covered

Topics Covered

security advisory moderate security update red hat file management openstack-manila

References

https://access.redhat.com/security/cve/CVE-2020-9543 https://access.redhat.com/security/updates/classification/#moderate

Package List

Red Hat OpenStack Platform 16.0:
Source: openstack-manila-9.1.2-0.20200405045746.f071a43.el8ost.src.rpm
noarch: openstack-manila-9.1.2-0.20200405045746.f071a43.el8ost.noarch.rpm openstack-manila-share-9.1.2-0.20200405045746.f071a43.el8ost.noarch.rpm python3-manila-9.1.2-0.20200405045746.f071a43.el8ost.noarch.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/


Advisory ID: RHSA-2020:2165-01
Product: Red Hat OpenStack Platform
Advisory URL: https://access.redhat.com/errata/RHSA-2020:2165
Issue date: 2020-05-14

Topic

An update for openstack-manila is now available for Red Hat OpenStackPlatform 16 (Train).Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.

Topics%20covered

Topics Covered

security advisory moderate security update red hat file management openstack-manila

Relevant Releases Architectures

Red Hat OpenStack Platform 16.0 - noarch

Bugs Fixed

1809855 - CVE-2020-9543 openstack-manila: User with share-network UUID is able to show, create and delete shares

1824519 - Rebase openstack-manila to f071a43

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here