SUSE-SU-2017:0848-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2017/suse-su-20170848-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2017:0848-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2017:0848-1

Related

CVE-2017-2592

Published

2017-03-29T11:01:22Z

Modified

2017-03-29T11:01:22Z

Summary

Security update for python-oslo.middleware

Details

This update for python-oslo.middleware fixes the following issues:

Security issue fixed: - CVE-2017-2592: Using the CatchError class may include sensitive values in the error message accompanying a Traceback, resulting in their disclosure (bsc#1022043).

References

Affected packages

SUSE:OpenStack Cloud 6 / python-oslo.middleware

Package

Name: python-oslo.middleware
Purl: pkg:rpm/suse/python-oslo.middleware&distro=SUSE%20OpenStack%20Cloud%206

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.8.0-3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-oslo.middleware": "2.8.0-3.1"
        }
    ]
}