Oval Definition:oval:org.opensuse.security:def:201917134
Revision Date:2022-05-22Version:1
Title:CVE-2019-17134
Description:

Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve information or issue configuration commands via simple HTTP requests to the Agent on port https/9443, because the cmd/agent.py gunicorn cert_reqs option is True but is supposed to be ssl.CERT_REQUIRED.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-17134
SUSE-SU-2019:3068-1
Mitre CVE-2019-17134
SUSE CVE-2019-17134
SUSE-SU-2019:3068-1
Platform(s):SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • AND
  • ardana-db-9.0+git.1572311426.a6dc2fd-3.13.1 is installed
  • OR ardana-keystone-9.0+git.1573069087.15ffd1c-3.13.1 is installed
  • OR ardana-neutron-9.0+git.1572019823.6650494-3.16.1 is installed
  • OR ardana-nova-9.0+git.1572618171.4460843-3.13.1 is installed
  • OR openstack-barbican-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-api-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-retry-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-worker-7.0.1~dev21-3.3.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3.1 is installed
  • OR openstack-keystone-14.1.1~dev28-3.16.1 is installed
  • OR openstack-neutron-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-gbp-5.0.1~dev476-3.13.1 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev16-3.13.1 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13.1 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-server-13.0.6~dev8-3.16.2 is installed
  • OR openstack-nova-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-api-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-cells-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-compute-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-conductor-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-console-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-placement-api-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-scheduler-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev22-3.16.2 is installed
  • OR openstack-octavia-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-api-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-worker-3.2.1~dev3-3.16.1 is installed
  • OR openstack-sahara-9.0.2~dev14-3.6.1 is installed
  • OR openstack-sahara-api-9.0.2~dev14-3.6.1 is installed
  • OR openstack-sahara-engine-9.0.2~dev14-3.6.1 is installed
  • OR python-barbican-7.0.1~dev21-3.3.1 is installed
  • OR python-keystone-14.1.1~dev28-3.16.1 is installed
  • OR python-neutron-13.0.6~dev8-3.16.2 is installed
  • OR python-neutron-gbp-5.0.1~dev476-3.13.1 is installed
  • OR python-neutron-lbaas-13.0.1~dev16-3.13.1 is installed
  • OR python-nova-18.2.4~dev22-3.16.2 is installed
  • OR python-octavia-3.2.1~dev3-3.16.1 is installed
  • OR python-psutil-5.4.6-3.3.1 is installed
  • OR python-sahara-9.0.2~dev14-3.6.1 is installed
  • OR release-notes-suse-openstack-cloud-9.20191025-3.15.1 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev21-3.13.1 is installed
  • OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.13.1 is installed
  • OR venv-openstack-designate-x86_64-7.0.1~dev22-3.13.1 is installed
  • OR venv-openstack-heat-x86_64-11.0.3~dev23-3.13.1 is installed
  • OR venv-openstack-keystone-x86_64-14.1.1~dev28-3.13.1 is installed
  • OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.13.1 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev15-3.13.1 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.13.1 is installed
  • OR venv-openstack-neutron-x86_64-13.0.6~dev8-6.13.1 is installed
  • OR venv-openstack-nova-x86_64-18.2.4~dev22-3.13.1 is installed
  • OR venv-openstack-octavia-x86_64-3.2.1~dev3-4.13.1 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev14-3.13.1 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND
  • crowbar-core-6.0+git.1573825081.b1caf60f1-3.16.1 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1573825081.b1caf60f1-3.16.1 is installed
  • OR crowbar-openstack-6.0+git.1573754820.dd036ef77-3.16.1 is installed
  • OR crowbar-ui-1.3.0+git.1572871359.50fc6087-14.1 is installed
  • OR openstack-barbican-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-api-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-retry-7.0.1~dev21-3.3.1 is installed
  • OR openstack-barbican-worker-7.0.1~dev21-3.3.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3.1 is installed
  • OR openstack-keystone-14.1.1~dev28-3.16.1 is installed
  • OR openstack-neutron-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-gbp-5.0.1~dev476-3.13.1 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev16-3.13.1 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13.1 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16.2 is installed
  • OR openstack-neutron-server-13.0.6~dev8-3.16.2 is installed
  • OR openstack-nova-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-api-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-cells-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-compute-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-conductor-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-console-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-placement-api-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-scheduler-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev22-3.16.2 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev22-3.16.2 is installed
  • OR openstack-octavia-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-api-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev3-3.16.1 is installed
  • OR openstack-octavia-worker-3.2.1~dev3-3.16.1 is installed
  • OR openstack-sahara-9.0.2~dev14-3.6.1 is installed
  • OR openstack-sahara-api-9.0.2~dev14-3.6.1 is installed
  • OR openstack-sahara-engine-9.0.2~dev14-3.6.1 is installed
  • OR python-barbican-7.0.1~dev21-3.3.1 is installed
  • OR python-keystone-14.1.1~dev28-3.16.1 is installed
  • OR python-neutron-13.0.6~dev8-3.16.2 is installed
  • OR python-neutron-gbp-5.0.1~dev476-3.13.1 is installed
  • OR python-neutron-lbaas-13.0.1~dev16-3.13.1 is installed
  • OR python-nova-18.2.4~dev22-3.16.2 is installed
  • OR python-octavia-3.2.1~dev3-3.16.1 is installed
  • OR python-psutil-5.4.6-3.3.1 is installed
  • OR python-sahara-9.0.2~dev14-3.6.1 is installed
  • OR release-notes-suse-openstack-cloud-9.20191025-3.15.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND openstack-octavia is not affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • OR SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • openstack-octavia is affected
  • OR openstack-octavia-amphora-agent is affected
  • OR openstack-octavia-api is affected
  • OR openstack-octavia-health-manager is affected
  • OR openstack-octavia-housekeeping is affected
  • OR openstack-octavia-worker is affected
  • OR python-octavia is affected
    • BACK