oval:org.mitre.oval:def:16948

Definition Id: oval:org.mitre.oval:def:16948

Oval ID:	oval:org.mitre.oval:def:16948
Title:	openSUSE-SU-2013:1087-1: update for openstack-nova
Description:	keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing certificates, which allows local users to spoof servers by pre-creating this directory, which is reused by Nova, as demonstrated using /tmp/keystone-signing-nova on Fedora.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2013-2030	Version:	9
Platform(s):	openSUSE 12.3	Product(s):
Definition Synopsis:
openSUSE 12.3 is installed Packages section Package python-greenlet is less than 0.4.0-3.3.1 AND Package python-greenlet-debuginfo is less than 0.4.0-3.3.1 AND Package python-greenlet-debugsource is less than 0.4.0-3.3.1 AND Package openstack-nova is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-api is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-cert is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-compute is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-doc is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-network is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-novncproxy is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-objectstore is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-scheduler is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-test is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-vncproxy is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package openstack-nova-volume is less than 2012.2.4+git.1363297910.9561484-2.10.1 AND Package python-greenlet-devel is less than 0.4.0-3.3.1 AND Package python-nova is less than 2012.2.4+git.1363297910.9561484-2.10.1

Definition Id: oval:org.mitre.oval:def:17041

Oval ID:	oval:org.mitre.oval:def:17041
Title:	openSUSE 12.3 is installed
Description:	openSUSE 12.3 is installed.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:novell:opensuse:12.3	Version:	5
Platform(s):	openSUSE 12.3	Product(s):
Definition Synopsis:
openSUSE 12.3 is installed
Referenced By:
oval:org.mitre.oval:def:16948

Copyright Security-Database 2006-2025 - Powered by themself ;) in 0.0264s

Facebook rss twitter linkedin mail