Oval Definition:oval:org.opensuse.security:def:20213281
Revision Date:2022-05-22Version:1
Title:CVE-2021-3281
Description:

In Django 2.2 before 2.2.18, 3.0 before 3.0.12, and 3.1 before 3.1.6, the django.utils.archive.extract method (used by "startapp --template" and "startproject --template") allows directory traversal via an archive with absolute paths or relative paths with dot segments.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2021-3281
SUSE CVE-2021-3281
SUSE-SU-2021:1963-1
unknown
Platform(s):SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • crowbar-openstack-4.0+git.1616146720.44daffca0-9.81.2 is installed
  • OR grafana-6.7.4-1.24.2 is installed
  • OR kibana-4.6.6-9.2 is installed
  • OR monasca-installer-20180608_12.47-16.2 is installed
  • OR python-Django-1.8.19-3.29.1 is installed
  • OR python-py-1.8.1-11.16.2 is installed
  • OR ruby2.1-rubygem-activerecord-session_store-0.1.2-3.4.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • AND
  • ardana-horizon-8.0+git.1610733160.0f577f4-3.21.1 is installed
  • OR ardana-logging-8.0+git.1610573640.452aed1-3.27.1 is installed
  • OR ardana-monasca-8.0+git.1610740501.5dca121-3.27.1 is installed
  • OR ardana-mq-8.0+git.1605176800.52cccfa-3.29.1 is installed
  • OR ardana-osconfig-8.0+git.1610643571.91b88d6-3.52.1 is installed
  • OR kibana-4.6.3-3.6.1 is installed
  • OR openstack-neutron-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-dhcp-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-doc-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-ha-tool-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-l3-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-macvtap-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-metadata-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-metering-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-server-11.0.9~dev69-3.40.1 is installed
  • OR openstack-nova-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-api-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-cells-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-compute-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-conductor-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-console-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-consoleauth-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-doc-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-novncproxy-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-placement-api-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-scheduler-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-serialproxy-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-vncproxy-16.1.9~dev78-3.45.1 is installed
  • OR python-Django-1.11.29-3.22.1 is installed
  • OR python-neutron-11.0.9~dev69-3.40.1 is installed
  • OR python-nova-16.1.9~dev78-3.45.1 is installed
  • OR release-notes-suse-openstack-cloud-8.20201214-3.29.1 is installed
  • OR spark-1.6.3-8.6.1 is installed
  • OR venv-openstack-horizon-x86_64-12.0.5~dev6-14.34.3 is installed
  • OR venv-openstack-neutron-x86_64-11.0.9~dev69-13.36.1 is installed
  • OR venv-openstack-nova-x86_64-16.1.9~dev78-11.34.1 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND
  • crowbar-ha-5.0+git.1610564036.b75ee1b-3.35.1 is installed
  • OR crowbar-openstack-5.0+git.1610402513.08dca931e-4.49.1 is installed
  • OR kibana-4.6.3-3.6.1 is installed
  • OR openstack-neutron-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-dhcp-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-doc-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-ha-tool-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-l3-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-macvtap-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-metadata-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-metering-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.9~dev69-3.40.1 is installed
  • OR openstack-neutron-server-11.0.9~dev69-3.40.1 is installed
  • OR openstack-nova-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-api-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-cells-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-compute-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-conductor-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-console-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-consoleauth-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-doc-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-novncproxy-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-placement-api-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-scheduler-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-serialproxy-16.1.9~dev78-3.45.1 is installed
  • OR openstack-nova-vncproxy-16.1.9~dev78-3.45.1 is installed
  • OR python-Django-1.11.29-3.22.1 is installed
  • OR python-neutron-11.0.9~dev69-3.40.1 is installed
  • OR python-nova-16.1.9~dev78-3.45.1 is installed
  • OR release-notes-suse-openstack-cloud-8.20201214-3.29.1 is installed
  • OR sleshammer-aarch64-0.8.0-0.20.2 is installed
  • OR sleshammer-ppc64le-0.8.0-0.20.2 is installed
  • OR sleshammer-s390x-0.8.0-0.20.2 is installed
  • OR sleshammer-x86_64-0.8.0-0.20.2 is installed
  • OR spark-1.6.3-8.6.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • AND
  • ardana-db-9.0+git.1611600773.5f1de5f-3.22.1 is installed
  • OR ardana-horizon-9.0+git.1610491814.38661c2-3.16.1 is installed
  • OR ardana-logging-9.0+git.1610490922.d5f9813-3.16.1 is installed
  • OR ardana-monasca-9.0+git.1610547641.d79ecfd-3.22.1 is installed
  • OR ardana-opsconsole-ui-9.0+git.1611867924.eb82818-4.16.1 is installed
  • OR ardana-osconfig-9.0+git.1610634027.5934cf8-3.25.1 is installed
  • OR kibana-4.6.3-4.6.1 is installed
  • OR openstack-dashboard-14.1.1~dev10-3.21.3 is installed
  • OR openstack-manila-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-api-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-data-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-scheduler-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-share-7.4.2~dev60-4.33.2 is installed
  • OR openstack-neutron-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-dhcp-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-gbp-12.0.1~dev16-3.22.2 is installed
  • OR openstack-neutron-ha-tool-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-l3-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-macvtap-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-metadata-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-metering-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-server-13.0.8~dev147-3.34.2 is installed
  • OR openstack-nova-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-api-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-cells-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-compute-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-conductor-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-console-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-novncproxy-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-placement-api-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-scheduler-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-serialproxy-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-vncproxy-18.3.1~dev78-3.34.2 is installed
  • OR python-Django1-1.11.29-3.18.2 is installed
  • OR python-horizon-14.1.1~dev10-3.21.3 is installed
  • OR python-manila-7.4.2~dev60-4.33.2 is installed
  • OR python-neutron-13.0.8~dev147-3.34.2 is installed
  • OR python-neutron-gbp-12.0.1~dev16-3.22.2 is installed
  • OR python-nova-18.3.1~dev78-3.34.2 is installed
  • OR python-openstack_auth-14.1.1~dev10-3.21.3 is installed
  • OR release-notes-suse-openstack-cloud-9.20201214-3.27.2 is installed
  • OR venv-openstack-horizon-x86_64-14.1.1~dev10-4.25.2 is installed
  • OR venv-openstack-manila-x86_64-7.4.2~dev60-3.27.2 is installed
  • OR venv-openstack-neutron-x86_64-13.0.8~dev147-6.25.2 is installed
  • OR venv-openstack-nova-x86_64-18.3.1~dev78-3.25.2 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND
  • crowbar-core-6.0+git.1611320924.849e748ff-3.34.1 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1611320924.849e748ff-3.34.1 is installed
  • OR crowbar-openstack-6.0+git.1610402342.21499240d-3.31.1 is installed
  • OR kibana-4.6.3-4.6.1 is installed
  • OR openstack-dashboard-14.1.1~dev10-3.21.3 is installed
  • OR openstack-manila-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-api-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-data-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-scheduler-7.4.2~dev60-4.33.2 is installed
  • OR openstack-manila-share-7.4.2~dev60-4.33.2 is installed
  • OR openstack-neutron-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-dhcp-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-gbp-12.0.1~dev16-3.22.2 is installed
  • OR openstack-neutron-ha-tool-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-l3-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-macvtap-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-metadata-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-metering-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.8~dev147-3.34.2 is installed
  • OR openstack-neutron-server-13.0.8~dev147-3.34.2 is installed
  • OR openstack-nova-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-api-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-cells-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-compute-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-conductor-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-console-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-novncproxy-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-placement-api-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-scheduler-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-serialproxy-18.3.1~dev78-3.34.2 is installed
  • OR openstack-nova-vncproxy-18.3.1~dev78-3.34.2 is installed
  • OR python-Django1-1.11.29-3.18.2 is installed
  • OR python-horizon-14.1.1~dev10-3.21.3 is installed
  • OR python-manila-7.4.2~dev60-4.33.2 is installed
  • OR python-neutron-13.0.8~dev147-3.34.2 is installed
  • OR python-neutron-gbp-12.0.1~dev16-3.22.2 is installed
  • OR python-nova-18.3.1~dev78-3.34.2 is installed
  • OR python-openstack_auth-14.1.1~dev10-3.21.3 is installed
  • OR release-notes-suse-openstack-cloud-9.20201214-3.27.2 is installed
  • OR sleshammer-x86_64-0.9.0-7.6.1 is installed
    • BACK