CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-4438 – Etcd: incomplete fix for cve-2023-39325/cve-2023-44487 in openstack platform
https://notcve.org/view.php?id=CVE-2024-4438
08 May 2024 — The etcd package distributed with the Red Hat OpenStack platform has an incomplete fix for CVE-2023-39325/CVE-2023-44487, known as Rapid Reset. This issue occurs because the etcd package in the Red Hat OpenStack platform is using http://golang.org/x/net/http2 instead of the one provided by Red Hat Enterprise Linux versions, meaning it should be updated at compile time instead. El paquete etcd distribuido con la plataforma Red Hat OpenStack tiene una solución incompleta para CVE-2023-39325/CVE-2023-44487, co... • https://access.redhat.com/errata/RHSA-2024:2729 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-4437 – Etcd: incomplete fix for cve-2021-44716 in openstack platform
https://notcve.org/view.php?id=CVE-2024-4437
08 May 2024 — The etcd package distributed with the Red Hat OpenStack platform has an incomplete fix for CVE-2021-44716. This issue occurs because the etcd package in the Red Hat OpenStack platform is using http://golang.org/x/net/http2 instead of the one provided by Red Hat Enterprise Linux versions, meaning it should be updated at compile time instead. El paquete etcd distribuido con la plataforma Red Hat OpenStack tiene una solución incompleta para CVE-2021-44716. Este problema ocurre porque el paquete etcd en la plat... • https://access.redhat.com/errata/RHSA-2024:3352 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-4436 – Etcd: incomplete fix for cve-2022-41723 in openstack platform
https://notcve.org/view.php?id=CVE-2024-4436
08 May 2024 — The etcd package distributed with the Red Hat OpenStack platform has an incomplete fix for CVE-2022-41723. This issue occurs because the etcd package in the Red Hat OpenStack platform is using http://golang.org/x/net/http2 instead of the one provided by Red Hat Enterprise Linux versions, meaning it should be updated at compile time instead. El paquete etcd distribuido con la plataforma Red Hat OpenStack tiene una solución incompleta para CVE-2022-41723. Este problema ocurre porque el paquete etcd en la plat... • https://access.redhat.com/errata/RHSA-2024:3352 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.5EPSS: 0%CPEs: 21EXPL: 0CVE-2024-1135 – HTTP Request Smuggling in benoitc/gunicorn
https://notcve.org/view.php?id=CVE-2024-1135
16 Apr 2024 — Gunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due to Gunicorn's handling of Transfer-Encoding headers, where it incorrectly processes requests with multiple, conflicting Transfer-Encoding headers, treating them as chunked regardless of the final encoding specified. This vulnerabilit... • https://huntr.com/bounties/22158e34-cfd5-41ad-97e0-a780773d96c1 • CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') •
CVSS: 7.8EPSS: 1%CPEs: 38EXPL: 0CVE-2024-1394 – Golang-fips/openssl: memory leaks in code encrypting and decrypting rsa payloads
https://notcve.org/view.php?id=CVE-2024-1394
21 Mar 2024 — A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the "return nil, nil, fa... • https://access.redhat.com/errata/RHSA-2024:1462 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 8.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-29156 – YAQL: OpenStack Murano Component Information Leakage
https://notcve.org/view.php?id=CVE-2024-29156
18 Mar 2024 — In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, the Murano service's MuranoPL extension to the YAQL language fails to sanitize the supplied environment, leading to potential leakage of sensitive service account information. En OpenStack Murano hasta 16.0.0, cuando se utiliza YAQL anterior a 3.0.0, la extensión MuranoPL del servicio Murano para el lenguaje YAQL no logra sanitizar el entorno proporcionado, lo que genera una posible fuga de información confidencial de la cuenta de servicio.... • https://launchpad.net/bugs/2048114 • CWE-116: Improper Encoding or Escaping of Output CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.6EPSS: 0%CPEs: 2EXPL: 0CVE-2023-6725 – Tripleo-ansible: bind keys are world readable
https://notcve.org/view.php?id=CVE-2023-6725
15 Mar 2024 — An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information. Se encontró una falla de control de acceso en el componente OpenStack Designate donde la información de configuración privada, incluidas las claves de acceso a BIND, no se hizo legible en todo el mundo de manera incorrecta. Un a... • https://access.redhat.com/errata/RHSA-2024:2736 • CWE-1220: Insufficient Granularity of Access Control •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-6110 – Openstack: deleting a non existing access rule deletes another existing access rule in it's scope
https://notcve.org/view.php?id=CVE-2023-6110
28 Feb 2024 — A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials. It was discovered that when python-openstackclient attempted to delete a non-existing access rule, it would delete another existing access rule instead, contrary to expectations. • https://access.redhat.com/errata/RHSA-2024:2737 • CWE-237: Improper Handling of Structural Elements •
CVSS: 5.9EPSS: 78%CPEs: 79EXPL: 3CVE-2023-48795 – ssh: Prefix truncation attack on Binary Packet Protocol (BPP)
https://notcve.org/view.php?id=CVE-2023-48795
18 Dec 2023 — The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phas... • https://packetstorm.news/files/id/176280 • CWE-222: Truncation of Security-relevant Information CWE-354: Improper Validation of Integrity Check Value •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-5625 – Python-eventlet: patch regression for cve-2021-21419 in some red hat builds
https://notcve.org/view.php?id=CVE-2023-5625
01 Nov 2023 — A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products. Se introdujo una regresión en la compilación de Red Hat de python-eventlet debido a un cambio en la estrategia de aplicación del parche, lo que provocó que no se aplicara un parche para CVE-2021-21419 para todas las compilaciones de todos los productos. Red Hat OpenShift Container Platform release 4.12... • https://access.redhat.com/errata/RHSA-2023:6128 • CWE-400: Uncontrolled Resource Consumption CWE-770: Allocation of Resources Without Limits or Throttling •