Oval Definition:oval:org.opensuse.security:def:20172592
Revision Date:2022-05-20Version:1
Title:CVE-2017-2592
Description:

python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure. Software using the CatchError class could include sensitive values in a traceback's error message. System users could exploit this flaw to obtain sensitive information from OpenStack component error logs (for example, keystone tokens).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-2592
SUSE-SU-2017:0848-1
SUSE-SU-2017:1062-1
SUSE-SU-2018:3924-1
Mitre CVE-2017-2592
SUSE CVE-2017-2592
SUSE-SU-2017:0848-1
SUSE-SU-2017:1062-1
SUSE-SU-2018:3924-1
Platform(s):SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
Product(s):
Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • python-oslo.cache-1.14.1-3.3.3 is installed
  • OR python-oslo.concurrency-3.14.1-3.3.3 is installed
  • OR python-oslo.db-4.13.6-3.3.3 is installed
  • OR python-oslo.log-3.16.1-3.3.3 is installed
  • OR python-oslo.messaging-5.10.2-3.6.3 is installed
  • OR python-oslo.middleware-3.19.1-4.3.4 is installed
  • OR python-oslo.serialization-2.13.2-3.3.3 is installed
  • OR python-oslo.service-1.16.1-3.3.1 is installed
  • OR python-oslo.utils-3.16.1-3.3.3 is installed
  • OR python-oslo.versionedobjects-1.17.1-3.3.1 is installed
  • OR python-oslo.vmware-2.14.1-3.3.1 is installed
  • OR python-oslotest-2.10.1-3.3.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-oslo.middleware-2.8.0-3 is installed
    • BACK