Описание
A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| python-openstackclient | fixed | 6.3.0-2 | package | |
| python-openstackclient | no-dsa | bookworm | package | |
| python-openstackclient | no-dsa | bullseye | package | |
| python-openstackclient | not-affected | buster | package |
Примечания
https://bugzilla.redhat.com/show_bug.cgi?id=2212960
https://bugzilla.redhat.com/show_bug.cgi?id=2209607
https://review.opendev.org/888697
EPSS
Связанные уязвимости
A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials.
A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials.
A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials.
Уязвимость компонента Access Rule Handler платформы облачных сервисов Red Hat OpenStack Platform, позволяющая нарушителю выполнить отказ в обслуживании
EPSS