SUSE: 2019:1862-1 Important: Ardana and Crowbar Security Patch
suse
July 17, 2019
An update that solves 5 vulnerabilities and has 10 fixes is now available
Summary
This update for ardana and crowbar fixes the following issues: - Restrict rootwrap directories for cinder (bsc#1132542) - Change Cinder default log level from DEBUG to INFO (SCRD-7132) - Remove configuration from migration (bsc#1126391) - Configurable innodb flush options (SCRD-7496) - Secure designate's rootwrap files (bsc#1132542) - specify rootwrap config file in designate sudoer (bsc#1132542) - Update Designate log threshold from DEBUG to INFO (SCRD-8459) - Change Glance default log level from DEBUG to INFO (SCRD-8592) - Change Heat default log level from DEBUG to INFO (SCRD-7132) - Fix Horizon missing create snapshot action for users (bsc#1130593) - Don't set external-name in ardana-ci models (SCRD-7471) - Fix fail-over/-back behavior of haproxy for galera (bsc#1122875)
References
#1083721 #1105559 #1118003 #1120932 #1122875
#1124170 #1126391 #1128753 #1130593 #1131712
#1131791 #1132542 #1132852 #1132860 #124991
Cross- CVE-2018-14574 CVE-2019-10876 CVE-2019-11068
CVE-2019-3498 CVE-2019-6975
Affected Products:
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud 8
HPE Helion Openstack 8
https://www.suse.com/security/cve/CVE-2018-14574.html
https://www.suse.com/security/cve/CVE-2019-10876.html
https://www.suse.com/security/cve/CVE-2019-11068.html
https://www.suse.com/security/cve/CVE-2019-3498.html
https://https://www.suse.com/security/cve/CVE-2019-6975.html
https://bugzilla.suse.com/1083721
https://bugzilla.suse.com/1105559
https://bugzilla.suse.com/1118003
https://bugzilla.suse.com/1120932
PREVIOUS
NEXT
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!