IBM Cloud Manager with Openstack is vulnerable to a OpenStack Nova vulnerablities. An attacker could exploit this vulnerability to obtain sensitive information by a host data leak in resize/migration.
CVE(s): CVE-2016-2140
Affected product(s) and affected version(s):
IBM Cloud Manager with OpenStack 4.3.0 through 4.3.0.6
IBM Cloud Manager with OpenStack 4.2.0 through 4.2.0.3
IBM Cloud Manager with OpenStack 4.1.0 through 4.1.0.5
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2dV58W4
X-Force Database: http://ift.tt/2erliTb
from IBM Product Security Incident Response Team http://ift.tt/2dV5EDk
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.