Описание
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| cloud-init | fixed | 22.2-2 | package | |
| cloud-init | not-affected | bullseye | package | |
| cloud-init | not-affected | buster | package |
Примечания
https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c
https://bugs.launchpad.net/cloud-init/+bug/1978422
Связанные уязвимости
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.