Vulnerability CVE-2018-17954

Vulnerability Name:

CVE-2018-17954 (CCN-182440)

Assigned:

2018-11-22

Published:

2018-11-22

Updated:

2022-10-13

Summary:

An Improper Privilege Management in crowbar of SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud 9, SUSE OpenStack Cloud Crowbar 8, SUSE OpenStack Cloud Crowbar 9 allows root users on any crowbar managed node to cause become root on any other node. This issue affects: SUSE OpenStack Cloud 7 crowbar-core versions prior to 4.0+git.1578392992.fabfd186c-9.63.1, crowbar-. SUSE OpenStack Cloud 8 ardana-cinder versions prior to 8.0+git.1579279939.ee7da88-3.39.3, ardana-. SUSE OpenStack Cloud 9 ardana-ansible versions prior to 9.0+git.1581611758.f694f7d-3.16.1, ardana-. SUSE OpenStack Cloud Crowbar 8 crowbar-core versions prior to 5.0+git.1582968668.1a55c77c5-3.35.4, crowbar-. SUSE OpenStack Cloud Crowbar 9 crowbar-core versions prior to 6.0+git.1582892022.cbd70e833-3.19.3, crowbar-.

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-269

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2018-17954

Source: CCN
Type: Bugzilla Bug 1117080
(CVE-2018-17954) VUL-0: CVE-2018-17954: crowbar: provision leaks admin password to all nodes in cleartext

Source: CONFIRM
Type: Issue Tracking, Vendor Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1117080

Source: XF
Type: UNKNOWN
suse-cve201817954-priv-esc(182440)

Source: CCN
Type: SUSE Web site
SUSE OpenStack Cloud is now end of sale.

Vulnerable Configuration:

Configuration 1:

cpe:/a:suse:openstack_cloud:8.0:*:*:*:*:*:*:*

OR cpe:/a:suse:openstack_cloud_crowbar:8.0:*:*:*:*:*:*:*

OR cpe:/a:suse:openstack_cloud_crowbar:9.0:*:*:*:*:*:*:*

OR cpe:/a:suse:openstack_cloud:9.0:*:*:*:*:*:*:*

OR cpe:/a:suse:openstack_cloud:7.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201817954	V	CVE-2018-17954	2022-05-22
oval:org.opensuse.security:def:59580	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:59576	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:59830	P	Security update for webkit2gtk3 (Important)	2021-12-01
oval:org.opensuse.security:def:58044	P	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)	2021-11-19
oval:org.opensuse.security:def:58038	P	Security update for qemu (Important)	2021-11-10
oval:org.opensuse.security:def:61095	P	Security update for the Linux Kernel (Important)	2021-10-12
oval:org.opensuse.security:def:60370	P	Security update for the Linux Kernel (Important)	2021-09-23
oval:org.opensuse.security:def:61677	P	xdg-utils-20170508-3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63232	P	qemu-3.1.0-7.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61667	P	tftp-5.2-3.22 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63205	P	gnuplot-5.2.2-3.3.29 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63234	P	rmt-server-1.2.2-1.15 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61653	P	sharutils-4.15.2-2.21 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63204	P	freeradius-server-3.0.16-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61654	P	shim-15+git47-1.5 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61666	P	tcpdump-4.9.2-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:60329	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:63420	P	djvulibre-3.5.27-9.28 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63476	P	hdf5-gnu-hpc-1.10.7-2.25 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63336	P	libcacard-devel-2.5.3-1.27 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63328	P	frr-7.4-2.25 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63504	P	openconnect-7.08-6.9.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63496	P	libsybdb5-1.1.36-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63102	P	reiserfs-kmp-default-5.3.18-57.3 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63437	P	libsndfile1-32bit-1.0.28-5.5.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63367	P	python3-virt-bootstrap-1.0.0-5.3.124 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63338	P	libecpg6-13.2-5.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63129	P	python3-aiohttp-3.4.4-3.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63470	P	finch-2.13.0-10.105 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63443	P	libxslt1-32bit-1.1.32-3.8.24 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63436	P	libpcap1-32bit-1.8.1-4.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63471	P	flac-1.3.2-3.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62331	P	subversion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62211	P	libruby2_5-2_5-2.5.9-4.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62779	P	libcdio16-0.94-6.9.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62229	P	libtiff-devel-4.0.9-5.30.28 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62119	P	libXRes1-1.2.0-1.18 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62313	P	python3-waitress-1.4.3-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62135	P	libXvnc1-1.9.0-19.9.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62998	P	cpp10-10.2.1+git583-1.3.4 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62753	P	gnome-shell-3.34.5-8.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:57485	P	Security update for libsndfile (Critical)	2021-08-05
oval:org.opensuse.security:def:57479	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:59763	P	Security update for arpwatch (Important)	2021-06-28
oval:org.opensuse.security:def:63546	P	libmwaw-0_3-3-0.3.13-2.25 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:63531	P	colord-1.4.2-1.37 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:57936	P	Security update for qemu (Important)	2021-06-08
oval:org.opensuse.security:def:57930	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:63074	P	libopenssl-1_0_0-devel-1.0.2p-3.14.2 on GA media (Moderate)	2021-04-29
oval:org.opensuse.security:def:56968	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:60488	P	Security update for ovmf (Moderate)	2021-03-30
oval:org.opensuse.security:def:84270	P	Security update for crowbar-core, crowbar-openstack, grafana, influxdb, openstack-heat-templates, openstack-nova, python-Jinja2 (Important)	2021-01-11
oval:org.opensuse.security:def:84728	P	Security update for crowbar-core, crowbar-openstack, grafana, influxdb, openstack-heat-templates, openstack-nova, python-Jinja2 (Important)	2021-01-11
oval:org.opensuse.security:def:62443	P	libgypsy-devel-0.9-2.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61742	P	freetype2-devel-2.10.1-4.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61954	P	procmail-3.22-2.34 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61846	P	libmspack-devel-0.6-3.8.19 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62653	P	libSoundTouch0-1.8.0-3.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61690	P	Mesa-19.3.4-45.23 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62463	P	libpcre2-posix2-10.31-1.14 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63308	P	uuidd-2.33.1-4.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61743	P	fuse-2.9.7-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62407	P	gcab-1.1-1.15 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63581	P	imobiledevice-tools-1.2.0+git20170122.45fda81-1.44 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61757	P	graphite2-devel-1.3.11-2.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62972	P	perl-Archive-Extract-0.80-1.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61861	P	libpcre1-32bit-8.41-4.20 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62677	P	libjpeg8-32bit-8.1.2-5.12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63404	P	apache-commons-beanutils-1.9.4-1.68 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63616	P	gegl-0_3-0.3.34-1.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61766	P	hardlink-1.0+git.e66999f-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62539	P	libXi6-32bit-1.7.9-1.23 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61758	P	graphviz-2.40.1-6.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62427	P	libXinerama1-32bit-1.1.3-1.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63387	P	apache-commons-beanutils-1.9.2-2.46 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61937	P	pam_ssh-2.1-2.27 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61781	P	lftp-4.8.4-3.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62561	P	liblouis-data-3.3.0-4.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63298	P	rarpd-s20161105-6.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:58242	P	Security update for sssd (Moderate)	2020-12-01
oval:org.opensuse.security:def:56962	P	Security update for freerdp (Important)	2020-12-01
oval:org.opensuse.security:def:57645	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:58210	P	Security update for strongswan (Important)	2020-12-01
oval:org.opensuse.security:def:58354	P	Security update for crowbar-core, crowbar-openstack, openstack-neutron-fwaas, rubygem-crowbar-client (Critical)	2020-12-01
oval:org.opensuse.security:def:56828	P	Security update for postgresql10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:60585	P	Security update for slf4j (Important)	2020-12-01
oval:org.opensuse.security:def:60748	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:59147	P	Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:61065	P	Security update for kernel-firmware (Important)	2020-12-01
oval:org.opensuse.security:def:59393	P	Security update for ucode-intel (Moderate)	2020-12-01
oval:org.opensuse.security:def:60630	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:58323	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:56799	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:57200	P	Security update for compat-openssl097g	2020-12-01
oval:org.opensuse.security:def:58248	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:57651	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:60669	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:60827	P	Security update for ardana-cinder, ardana-cobbler, ardana-designate, ardana-extensions-example, ardana-extensions-nsx, ardana-glance, ardana-heat, ardana-input-model, ardana-ironic, ardana-keystone, ardana-logging, ardana-monasca, ardana-monasca-transform, ardana-mq, ardana-neutron, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, mariadb, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-heat, openstack-heat-templates, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-ironic, openstack-keystone, openstack-monasca-agent, openstack-neutron, openstack-neutron-gbp, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, openstack-sahara, openstack-trove, python-cinderlm, python-congressclient, python-designateclient, python-ironic-lib, python-networking-cisco, python-osc-lib, python-oslo.context, python-oslo.rootwrap, python-oslo.serialization, python-oslo.service, python-stevedore, python-taskflow, rubygem-crowbar-client, rubygem-pumavenv-openstack-swift (Important)	2020-12-01
oval:org.opensuse.security:def:59169	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:59881	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:60848	P	Security update for crowbar, crowbar-core, crowbar-ha, crowbar-init, crowbar-openstack, crowbar-ui (Moderate)	2020-12-01
oval:org.opensuse.security:def:61015	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:59394	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:60015	P	Security update for texlive (Important)	2020-12-01
oval:org.opensuse.security:def:60750	P	Security update for xorg-x11-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:58130	P	Security update for python-Pillow (Important)	2020-12-01
oval:org.opensuse.security:def:58273	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:56800	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:57373	P	Security update for icedtea-web	2020-12-01
oval:org.opensuse.security:def:58329	P	Security update for java-1_7_1-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:56805	P	Security update for PackageKit (Moderate)	2020-12-01
oval:org.opensuse.security:def:57206	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:60707	P	Security update for adns (Important)	2020-12-01
oval:org.opensuse.security:def:59327	P	Security update for gcc10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:60070	P	Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60934	P	Security update for rubygem-loofah (Moderate)	2020-12-01
oval:org.opensuse.security:def:59416	P	Security update for openssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:60136	P	Security update for java-1_8_0-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:58204	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:56822	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:58136	P	Security update for polkit (Moderate)	2020-12-01
oval:org.opensuse.security:def:58279	P	Security update for ruby2.1 (Important)	2020-12-01
oval:org.opensuse.security:def:56806	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:57379	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:60798	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:59146	P	Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60972	P	Security update for adns (Important)	2020-12-01
oval:org.opensuse.security:def:58348	P	Security update for qemu (Moderate)	2020-11-29
oval:org.opensuse.security:def:84107	P	Security update for ardana-cinder, ardana-cobbler, ardana-designate, ardana-extensions-example, ardana-extensions-nsx, ardana-glance, ardana-heat, ardana-input-model, ardana-ironic, ardana-keystone, ardana-logging, ardana-monasca, ardana-monasca-transform, ardana-mq, ardana-neutron, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, mariadb, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-heat, openstack-heat-templates, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-ironic, openstack-keystone, openstack-monasca-agent, openstack-neutron, openstack-neutron-gbp, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, openstack-sahara, openstack-trove, python-cinderlm, python-congressclient, python-designateclient, python-ironic-lib, python-networking-cisco, python-osc-lib, python-oslo.context, python-oslo.rootwrap, python-oslo.serialization, python-oslo.service, python-stevedore, python-taskflow, rubygem-crowbar-client, rubygem-pumavenv-openstack-swift (Important)	2020-03-11
oval:org.opensuse.security:def:88094	P	Security update for ardana-ansible, ardana-cinder, ardana-cobbler, ardana-db, ardana-horizon, ardana-input-model, ardana-monasca, ardana-mq, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, ardana-tls, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-designate, openstack-heat, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-ironic-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-horizon-plugin-octavia-ui, openstack-ironic, openstack-ironic-python-agent, openstack-keystone, openstack-magnum, openstack-monasca-agent, openstack-neutron, openstack-neutron-fwaas, openstack-neutron-gbp, openstack-neutron-vpnaas, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-sahara, openstack-swift, python-amqp, python-ironic-lib, python-keystoneauth1, python-keystoneclient, python-keystonemiddleware, python-ovs, supportutils-plugin-suse-openstack-cloud, rubygem-crowbar-client, rubygem-puma, venv-openstack-horizon (Important)	2020-03-11
oval:org.opensuse.security:def:88404	P	Security update for ardana-ansible, ardana-cinder, ardana-cobbler, ardana-db, ardana-horizon, ardana-input-model, ardana-monasca, ardana-mq, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, ardana-tls, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-designate, openstack-heat, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-ironic-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-horizon-plugin-octavia-ui, openstack-ironic, openstack-ironic-python-agent, openstack-keystone, openstack-magnum, openstack-monasca-agent, openstack-neutron, openstack-neutron-fwaas, openstack-neutron-gbp, openstack-neutron-vpnaas, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-sahara, openstack-swift, python-amqp, python-ironic-lib, python-keystoneauth1, python-keystoneclient, python-keystonemiddleware, python-ovs, supportutils-plugin-suse-openstack-cloud, rubygem-crowbar-client, rubygem-puma, venv-openstack-horizon (Important)	2020-03-11
oval:org.opensuse.security:def:84562	P	Security update for ardana-cinder, ardana-cobbler, ardana-designate, ardana-extensions-example, ardana-extensions-nsx, ardana-glance, ardana-heat, ardana-input-model, ardana-ironic, ardana-keystone, ardana-logging, ardana-monasca, ardana-monasca-transform, ardana-mq, ardana-neutron, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, mariadb, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-heat, openstack-heat-templates, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-ironic, openstack-keystone, openstack-monasca-agent, openstack-neutron, openstack-neutron-gbp, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, openstack-sahara, openstack-trove, python-cinderlm, python-congressclient, python-designateclient, python-ironic-lib, python-networking-cisco, python-osc-lib, python-oslo.context, python-oslo.rootwrap, python-oslo.serialization, python-oslo.service, python-stevedore, python-taskflow, rubygem-crowbar-client, rubygem-pumavenv-openstack-swift (Important)	2020-03-11
oval:org.opensuse.security:def:80989	P	Security update for crowbar-core, crowbar-openstack, openstack-neutron-fwaas, rubygem-crowbar-client (Critical)	2020-02-03

BACK