Oval Definition:oval:org.opensuse.security:def:201920933
Revision Date:2022-05-22Version:1
Title:CVE-2019-20933
Description:

InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (aka shared secret).
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2019-20933
SUSE CVE-2019-20933
SUSE-SU-2020:3624-1
SUSE-SU-2020:3896-1
SUSE-SU-2020:3897-1
Platform(s):SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • AND
  • grafana-6.7.4-4.15.1 is installed
  • OR influxdb-1.3.4-4.3.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1605509190.64f020b-3.18.1 is installed
  • OR openstack-nova-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-api-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-cells-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-compute-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-conductor-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-console-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-consoleauth-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-doc-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-novncproxy-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-placement-api-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-scheduler-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-serialproxy-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-vncproxy-16.1.9~dev77-3.42.1 is installed
  • OR python-Jinja2-2.9.6-3.3.1 is installed
  • OR python-nova-16.1.9~dev77-3.42.1 is installed
  • OR venv-openstack-aodh-x86_64-5.1.1~dev7-12.30.1 is installed
  • OR venv-openstack-barbican-x86_64-5.0.2~dev3-12.31.1 is installed
  • OR venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.28.1 is installed
  • OR venv-openstack-cinder-x86_64-11.2.3~dev29-14.32.1 is installed
  • OR venv-openstack-designate-x86_64-5.0.3~dev7-12.29.1 is installed
  • OR venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.26.1 is installed
  • OR venv-openstack-glance-x86_64-15.0.3~dev3-12.29.1 is installed
  • OR venv-openstack-heat-x86_64-9.0.8~dev22-12.31.1 is installed
  • OR venv-openstack-ironic-x86_64-9.1.8~dev8-12.31.1 is installed
  • OR venv-openstack-keystone-x86_64-12.0.4~dev11-11.32.1 is installed
  • OR venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.30.1 is installed
  • OR venv-openstack-manila-x86_64-5.1.1~dev5-12.35.1 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.26.1 is installed
  • OR venv-openstack-monasca-x86_64-2.2.2~dev1-11.26.1 is installed
  • OR venv-openstack-murano-x86_64-4.0.2~dev2-12.26.1 is installed
  • OR venv-openstack-neutron-x86_64-11.0.9~dev69-13.34.1 is installed
  • OR venv-openstack-nova-x86_64-16.1.9~dev77-11.32.1 is installed
  • OR venv-openstack-octavia-x86_64-1.0.6~dev3-12.31.1 is installed
  • OR venv-openstack-sahara-x86_64-7.0.5~dev4-11.30.1 is installed
  • OR venv-openstack-trove-x86_64-8.0.2~dev2-11.30.1 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND
  • crowbar-core-5.0+git.1606840757.839a64745-3.47.1 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1606840757.839a64745-3.47.1 is installed
  • OR crowbar-openstack-5.0+git.1604938523.ded915845-4.46.1 is installed
  • OR grafana-6.7.4-4.15.1 is installed
  • OR influxdb-1.3.4-4.3.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1605509190.64f020b-3.18.1 is installed
  • OR openstack-nova-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-api-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-cells-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-compute-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-conductor-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-console-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-consoleauth-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-doc-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-novncproxy-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-placement-api-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-scheduler-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-serialproxy-16.1.9~dev77-3.42.1 is installed
  • OR openstack-nova-vncproxy-16.1.9~dev77-3.42.1 is installed
  • OR python-Jinja2-2.9.6-3.3.1 is installed
  • OR python-nova-16.1.9~dev77-3.42.1 is installed
  • OR ruby2.1-rubygem-crowbar-client-3.9.3-3.15.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • AND
  • ardana-cassandra-9.0+git.1600802664.7e480a2-3.6.2 is installed
  • OR ardana-mq-9.0+git.1605174486.a78ddce-3.19.2 is installed
  • OR ardana-osconfig-9.0+git.1601621747.a87e5a0-3.22.2 is installed
  • OR ardana-tempest-9.0+git.1603378983.fc0bca9-3.19.2 is installed
  • OR grafana-6.7.4-3.20.1 is installed
  • OR influxdb-1.3.8-4.3.3 is installed
  • OR openstack-cinder-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-api-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-backup-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-scheduler-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-volume-13.0.10~dev20-3.28.2 is installed
  • OR openstack-heat-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-api-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-api-cfn-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-engine-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-gbp-12.0.1~dev2-3.3.4 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-templates-0.0.0+git.1605509190.64f020b6-3.9.3 is installed
  • OR openstack-horizon-plugin-gbp-ui-12.0.1~dev3-3.3.4 is installed
  • OR openstack-ironic-python-agent-3.3.4~dev6-3.19.4 is installed
  • OR openstack-manila-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-api-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-data-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-scheduler-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-share-7.4.2~dev57-4.30.2 is installed
  • OR openstack-neutron-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-dhcp-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-gbp-12.0.1~dev5-3.19.4 is installed
  • OR openstack-neutron-ha-tool-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-l3-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-macvtap-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-metadata-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-metering-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-server-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-vpnaas-13.0.2~dev6-3.9.2 is installed
  • OR openstack-neutron-vyatta-agent-13.0.2~dev6-3.9.2 is installed
  • OR openstack-nova-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-api-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-cells-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-compute-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-conductor-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-console-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-novncproxy-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-placement-api-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-scheduler-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-serialproxy-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-vncproxy-18.3.1~dev77-3.31.2 is installed
  • OR python-Jinja2-2.10.1-3.3.3 is installed
  • OR python-cinder-13.0.10~dev20-3.28.2 is installed
  • OR python-heat-11.0.4~dev4-3.19.2 is installed
  • OR python-heat-gbp-12.0.1~dev2-3.3.4 is installed
  • OR python-horizon-plugin-gbp-ui-12.0.1~dev3-3.3.4 is installed
  • OR python-manila-7.4.2~dev57-4.30.2 is installed
  • OR python-neutron-13.0.8~dev135-3.31.2 is installed
  • OR python-neutron-gbp-12.0.1~dev5-3.19.4 is installed
  • OR python-neutron-vpnaas-13.0.2~dev6-3.9.2 is installed
  • OR python-neutron-vpnaas-tempest-plugin-13.0.2~dev6-3.9.2 is installed
  • OR python-nova-18.3.1~dev77-3.31.2 is installed
  • OR python-pysaml2-4.5.0-4.3.3 is installed
  • OR python-pytest-3.7.4-3.3.3 is installed
  • OR python-urllib3-1.23-3.15.3 is installed
  • OR release-notes-suse-openstack-cloud-9.20200917-3.24.3 is installed
  • OR spark-2.2.3-5.3.3 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev24-3.21.2 is installed
  • OR venv-openstack-cinder-x86_64-13.0.10~dev20-3.24.2 is installed
  • OR venv-openstack-designate-x86_64-7.0.2~dev2-3.21.2 is installed
  • OR venv-openstack-glance-x86_64-17.0.1~dev30-3.19.2 is installed
  • OR venv-openstack-heat-x86_64-11.0.4~dev4-3.21.2 is installed
  • OR venv-openstack-horizon-x86_64-14.1.1~dev7-4.23.2 is installed
  • OR venv-openstack-ironic-x86_64-11.1.5~dev16-4.19.2 is installed
  • OR venv-openstack-keystone-x86_64-14.2.1~dev4-3.21.2 is installed
  • OR venv-openstack-magnum-x86_64-7.2.1~dev1-4.21.2 is installed
  • OR venv-openstack-manila-x86_64-7.4.2~dev57-3.25.2 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.21.2 is installed
  • OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.19.2 is installed
  • OR venv-openstack-neutron-x86_64-13.0.8~dev135-6.23.2 is installed
  • OR venv-openstack-nova-x86_64-18.3.1~dev77-3.23.2 is installed
  • OR venv-openstack-octavia-x86_64-3.2.3~dev7-4.21.2 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev15-3.21.2 is installed
  • OR venv-openstack-swift-x86_64-2.19.2~dev48-2.16.2 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND
  • crowbar-core-6.0+git.1606314264.bf9ada813-3.31.2 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1606314264.bf9ada813-3.31.2 is installed
  • OR crowbar-openstack-6.0+git.1604573541.bb18c172d-3.28.3 is installed
  • OR grafana-6.7.4-3.20.1 is installed
  • OR influxdb-1.3.8-4.3.3 is installed
  • OR openstack-cinder-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-api-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-backup-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-scheduler-13.0.10~dev20-3.28.2 is installed
  • OR openstack-cinder-volume-13.0.10~dev20-3.28.2 is installed
  • OR openstack-heat-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-api-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-api-cfn-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-engine-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-gbp-12.0.1~dev2-3.3.4 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.4~dev4-3.19.2 is installed
  • OR openstack-heat-templates-0.0.0+git.1605509190.64f020b6-3.9.3 is installed
  • OR openstack-horizon-plugin-gbp-ui-12.0.1~dev3-3.3.4 is installed
  • OR openstack-ironic-python-agent-3.3.4~dev6-3.19.4 is installed
  • OR openstack-manila-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-api-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-data-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-scheduler-7.4.2~dev57-4.30.2 is installed
  • OR openstack-manila-share-7.4.2~dev57-4.30.2 is installed
  • OR openstack-neutron-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-dhcp-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-gbp-12.0.1~dev5-3.19.4 is installed
  • OR openstack-neutron-ha-tool-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-l3-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-macvtap-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-metadata-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-metering-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-server-13.0.8~dev135-3.31.2 is installed
  • OR openstack-neutron-vpnaas-13.0.2~dev6-3.9.2 is installed
  • OR openstack-neutron-vyatta-agent-13.0.2~dev6-3.9.2 is installed
  • OR openstack-nova-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-api-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-cells-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-compute-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-conductor-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-console-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-novncproxy-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-placement-api-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-scheduler-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-serialproxy-18.3.1~dev77-3.31.2 is installed
  • OR openstack-nova-vncproxy-18.3.1~dev77-3.31.2 is installed
  • OR python-Jinja2-2.10.1-3.3.3 is installed
  • OR python-cinder-13.0.10~dev20-3.28.2 is installed
  • OR python-heat-11.0.4~dev4-3.19.2 is installed
  • OR python-heat-gbp-12.0.1~dev2-3.3.4 is installed
  • OR python-horizon-plugin-gbp-ui-12.0.1~dev3-3.3.4 is installed
  • OR python-manila-7.4.2~dev57-4.30.2 is installed
  • OR python-neutron-13.0.8~dev135-3.31.2 is installed
  • OR python-neutron-gbp-12.0.1~dev5-3.19.4 is installed
  • OR python-neutron-vpnaas-13.0.2~dev6-3.9.2 is installed
  • OR python-neutron-vpnaas-tempest-plugin-13.0.2~dev6-3.9.2 is installed
  • OR python-nova-18.3.1~dev77-3.31.2 is installed
  • OR python-pysaml2-4.5.0-4.3.3 is installed
  • OR python-pytest-3.7.4-3.3.3 is installed
  • OR python-urllib3-1.23-3.15.3 is installed
  • OR release-notes-suse-openstack-cloud-9.20200917-3.24.3 is installed
  • OR spark-2.2.3-5.3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • crowbar-openstack-4.0+git.1604938545.30c10db18-9.77.1 is installed
  • OR grafana-6.7.4-1.20.1 is installed
  • OR influxdb-1.2.4-5.1 is installed
  • OR python-urllib3-1.16-3.12.1 is installed
    • BACK