Описание
A Denial of Service (DoS) condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion culminating in a denial of service.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenStack Platform 10 (Newton) | openstack-mistral | Will not fix | ||
| Red Hat OpenStack Platform 12 (Pike) | openstack-mistral | Out of support scope | ||
| Red Hat OpenStack Platform 13 (Queens) | openstack-mistral | Will not fix | ||
| Red Hat OpenStack Platform 14 (Rocky) | openstack-mistral | Will not fix | ||
| Red Hat OpenStack Platform 15 (Stein) | openstack-mistral | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
A Denial of Service (DoS) condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion culminating in a denial of service.
A Denial of Service (DoS) condition is possible in OpenStack Mistral in versions up to and including 7.0.3. Submitting a specially crafted workflow definition YAML file containing nested anchors can lead to resource exhaustion culminating in a denial of service.
A Denial of Service (DoS) condition is possible in OpenStack Mistral i ...
EPSS
6.5 Medium
CVSS3