Safety vulnerability ID: 36993
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Octavia 2.0.3 and 3.0.2 include a fix for CVE-2018-16856: In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are readable by all users. Sensitive information such as private keys can appear in these log files allowing for information exposure.
Latest version: 15.0.0
OpenStack Octavia Scalable Load Balancer as a Service
In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are readable by all users. Sensitive information such as private keys can appear in these log files allowing for information exposure.
CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16856: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16856
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application