Stay Secure with the Latest Linux Advisories

security advisorymoderateupdate

Red Hat OpenStack 13.0: RHSA-2018:2721-01 Moderate Security Update

An update is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat Enterprise Linux OpenStack Platform security update Advisory ID: RHSA-2018:2721-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2018:2721 Issue date: 2018-09-17 CVE Names: CVE-2018-10915 CVE-2018-14620 CVE-2018-14635 ==================================================================== 1. Summary: An update is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware. Security Fix(es): * openstack-rabbitmq-container: Insecure download of rabbitmq_clusterer during docker build (CVE-2018-14620) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. The Red Hat OpenStack Platform container images have been updated to address security advisory/ies: RHSA-2018:2557, RHSA-2018:2710. 3. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 After installing this update, the MariaDB server daemon (mysqld) will be restarted automatically. 4. Bugs fixed (https://bugzilla.redhat.com/): 1624062 - Rebase openstack-containers to latest - OSP13 1626953 - CVE-2018-14620 openstack-rabbitmq-container: Insecure download of rabbitmq_clusterer during docker build 5. References: https://access.redhat.com/security/cve/CVE-2018-10915 https://access.redhat.com/security/cve/CVE-2018-14620 https://access.redhat.com/security/cve/CVE-2018-14635 https://access.redhat.com/security/updates/classification#moderate 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBW6DthNzjgjWX9erEAQjhfRAAhU8VRPcNX3l5izeqfU6SBSQW407TTzjg 2i4jQRIGd4XahUqJMeVNsantcMQyrsiCpvYnicI4Sv/MwpbIwiu9S9RE1tk6xZN8 Cci4oyk6ZF/IsfSD3ChckIrXfeeQgFPimjEWN6LSUWhVRNeCR4zmXLpT+/ibys0w fNvEpqDW7er5RfDsOfuYQWcj3eMfhVFR+clD3/DDheznNZXRga4owfrHbiRPC1zu Zz6Q45pncw/uYmPC3wSnwScX58/u6g0/I7rfg06LcXe8fwf8XCYa0mlw1kmePtaq 2X7wrYYTraTqBr/QJaxHipkami9ACnUNWRspT/hLDaSMwPfFG8fcAG+gBWHRJXUA H0Dl0h7RqbGxH+e4DghrQLCT62D77uAla/ZTZvpaq9EVLKdKRJqahjEqW1qOSVl8 +4/+t1xMi1VaQeRFxQ6gRsHFJ162aGg/C8kkvdvxSgONJ6pdBsDHETXj6RL3S24K 99yOkYXAL2Axlt0c/n5gs3xOHihC+EbgqZIoGMz6jiCrl2NxNdB9xqFacTWixYvY 3PAUcVACgGUouU/XWALekJG0w3W9PP2SyGDpfIGPff5z5ecPTJ/PKeg2x3RGkIl6 Cjb0esTd901N7wQe7BuasGCACh+2ekNHqmItFufLK2YfyFOL7LAHGJmU/VmvqmZU CQBdyQqEcDQ=B5fa -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A significant refresh has been released for Red Hat OpenStack Platform targeting vulnerabilities in version 13.0.. Red Hat OpenStack, Security Update, Moderate Impact, Infrastructure-as-a-Service. . LinuxSecurity.com Team

Sep 18, 2018 Red Hat