PYSEC-2019-193

See a problem?

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/octavia/PYSEC-2019-193.yaml

JSON Data

https://api.osv.dev/v1/vulns/PYSEC-2019-193

Aliases

Published

2019-03-26T18:29:00Z

Modified

2024-04-29T11:41:35.368060Z

Summary

[none]

Details

In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are readable by all users. Sensitive information such as private keys can appear in these log files allowing for information exposure.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16856

Affected packages

PyPI / octavia

Package

Name: octavia; View open source insights on deps.dev
Purl: pkg:pypi/octavia

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.0.0

Fixed

3.0.2

Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.3

Affected versions

0.*

0.5.2

0.8.0

0.8.1

0.9.0

0.9.1

0.9.2

0.10.0

1.*

1.0.0.0b1

1.0.0.0b2

1.0.0.0b3

1.0.0.0rc1

1.0.0.0rc2

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

2.*

2.0.0.0b1

2.0.0.0b2

2.0.0.0b3

2.0.0.0rc1

2.0.0.0rc2

2.0.0

2.0.1

2.0.2

3.*

3.0.0

3.0.1

Database specific

source

"https://github.com/pypa/advisory-database/blob/main/vulns/octavia/PYSEC-2019-193.yaml"