Oval Definition:	oval:org.opensuse.security:def:202122138
Revision Date: 2022-05-22 Version: 1 Title: CVE-2021-22138 Description: In Logstash versions after 6.4.0 and before 6.8.15 and 7.12.0 a TLS certificate validation flaw was found in the monitoring feature. When specifying a trusted server CA certificate Logstash would not properly verify the certificate returned by the monitoring server. This could result in a man in the middle style attack against the Logstash monitoring data. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2021-22138 SUSE CVE-2021-22138 Platform(s): SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis Release Information SUSE OpenStack Cloud 8 is installed OR SUSE OpenStack Cloud Crowbar 8 is installed AND logstash is not affected Definition Synopsis SUSE OpenStack Cloud 7 is installed AND logstash is not affected Definition Synopsis Release Information SUSE OpenStack Cloud 9 is installed OR SUSE OpenStack Cloud Crowbar 9 is installed AND logstash is not affected
BACK