SUSE OpenStack Cloud Crowbar 8: 2021:2554-1 Moderate: Security Fixes
suse
July 28, 2021
An update that solves 16 vulnerabilities, contains 10 features and has 8 fixes is now available
Summary
This update for ardana-cobbler, cassandra, cassandra-kit, crowbar-core, crowbar-openstack, documentation-suse-openstack-cloud, grafana, kibana, openstack-heat-templates, openstack-monasca-installer, openstack-nova, python-Django, python-elementpath, python-eventlet, python-py, python-pysaml2, python-six, python-xmlschema fixes the following issues: Security fixes included on this update: cassandra-kit: - CVE-2020-17516: Internode encryption enforcement vulnerability cassandra: - CVE-2020-17516: Internode encryption enforcement vulnerability - CVE-2017-5929 logback: Fixed a serialization vulnerability in SocketServer and ServerSocketReceiver crowbar-core: CVE-2020-26247: Potentially XXE or SSRF attacks by parsed Nokogiri::XML::Schema grafana:
References
#1019074 #1044849 #1057496 #1073879 #1113302
#1123064 #1143893 #1166139 #1176784 #1179805
#1180507 #1181277 #1181278 #1181689 #1181828
#1182433 #1183174 #1183803 #1184148 #1185623
#1185836 #1186608 #1186611 #940812 ECO-3105
PM-2352 SCRD-8523 SOC-11422 SOC-11470 SOC-11471
SOC-11521 SOC-11523 SOC-11525 SOC-9876
Cross- CVE-2017-11481 CVE-2017-11499 CVE-2017-5929
CVE-2019-25025 CVE-2020-17516 CVE-2020-26247
CVE-2020-29651 CVE-2021-21238 CVE-2021-21239
CVE-2021-21419 CVE-2021-23336 CVE-2021-27358
CVE-2021-28658 CVE-2021-31542 CVE-2021-33203
CVE-2021-33571
CVSS scores:
CVE-2017-11481 (NVD) : 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVE-2017-11481 (SUSE): 5.4 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
PREVIOUS
NEXT
Announcement ID: SUSE-SU-2021:2554-1
Rating: moderate
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!