Explore top 10 tips to secure your open-source projects now. Read More
×
This update for openstack-ceilometer, -cinder, -dashboard, -glance, -heat, -keystone, -manila, -magnum and -novaopenstack-keystone provides the latest code from OpenStack Newton. - nova: Add release note that legacy notification exception contexts appearing in ERROR level logs may include sensitive information such as account passwords and authorization tokens. (bsc#1030406, CVE-2017-7214) - nova: Remove PrivTmp from openstack-nova-compute service. (bsc#1024328) - dashboard: Remove dangerous safestring declaration. (bsc#1032322, CVE-2017-7400) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2017-882=1
#1024328 #1030406 #1032322
Cross- CVE-2017-7214 CVE-2017-7400
Affected Products:
SUSE OpenStack Cloud 7
https://www.suse.com/security/cve/CVE-2017-7214.html
https://www.suse.com/security/cve/CVE-2017-7400.html
https://bugzilla.suse.com/1024328
https://bugzilla.suse.com/1030406
https://bugzilla.suse.com/1032322
Get the latest Linux and open source security news straight to your inbox.