SUSE: 2018:2576-1 Moderate: OpenStack Authentication Fix
suse
August 31, 2018
An update that solves one vulnerability and has four fixes is now available
Summary
This update for OpenStack fixes the following issues: The following security issue with openstack-keystone has been fixed: - CVE-2018-14432: Reduce duplication in federated authentication APIs. (bsc#1102151) Additionally, the following non-security issues have been fixed: openstack-dashboard: - Fetch and show Cinder availability zones list during volume creation and volume creation from image. (bsc#1100751) openstack-heat: - Add Trunk resource support. openstack-horizon-plugin-designate-ui: - Install all designate panels that are available. openstack-nova: - Stop _undefine_domain erroring if domain not found. (bsc#1099902) - Fix Nova to allow using cinder v3 endpoint. (bsc#1095482) python-os-vif: - Check if interface belongs to a Linux Bridge before removing. (bsc#1084724)
Topics Covered
References
#1084724 #1095482 #1099902 #1100751 #1102151
Cross- CVE-2018-14432
Affected Products:
SUSE OpenStack Cloud 7
https://www.suse.com/security/cve/CVE-2018-14432.html
https://bugzilla.suse.com/1084724
https://bugzilla.suse.com/1095482
https://bugzilla.suse.com/1099902
https://bugzilla.suse.com/1100751
https://bugzilla.suse.com/1102151
PREVIOUS
NEXT
Announcement ID: SUSE-SU-2018:2576-1
Rating: moderate
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!