It was discovered that OpenStack Heat incorrectly handled certain hidden parameter values. A remote authenticated user could possibly use this issue to obtain sensitive data.
{ "binaries": [ { "binary_name": "heat-api", "binary_version": "1:10.0.2-0ubuntu1.1" }, { "binary_name": "heat-api-cfn", "binary_version": "1:10.0.2-0ubuntu1.1" }, { "binary_name": "heat-common", "binary_version": "1:10.0.2-0ubuntu1.1" }, { "binary_name": "heat-engine", "binary_version": "1:10.0.2-0ubuntu1.1" }, { "binary_name": "python-heat", "binary_version": "1:10.0.2-0ubuntu1.1" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "heat-api", "binary_version": "1:14.2.0-0ubuntu1.1" }, { "binary_name": "heat-api-cfn", "binary_version": "1:14.2.0-0ubuntu1.1" }, { "binary_name": "heat-common", "binary_version": "1:14.2.0-0ubuntu1.1" }, { "binary_name": "heat-engine", "binary_version": "1:14.2.0-0ubuntu1.1" }, { "binary_name": "python3-heat", "binary_version": "1:14.2.0-0ubuntu1.1" } ], "availability": "No subscription required" }