Headline
Ubuntu Security Notice USN-6293-1
Ubuntu Security Notice 6293-1 - It was discovered that OpenStack Heat incorrectly handled certain hidden parameter values. A remote authenticated user could possibly use this issue to obtain sensitive data.
==========================================================================Ubuntu Security Notice USN-6293-1August 16, 2023heat vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTSSummary:OpenStack Heat could be made to expose sensitive information.Software Description:- heat: OpenStack Orchestration ServiceDetails:It was discovered that OpenStack Heat incorrectly handled certain hiddenparameter values. A remote authenticated user could possibly use this issueto obtain sensitive data.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS: python3-heat 1:18.0.1-0ubuntu1.1In general, a standard system update will make all the necessary changes.References: https://ubuntu.com/security/notices/USN-6293-1 CVE-2023-1625Package Information: https://launchpad.net/ubuntu/+source/heat/1:18.0.1-0ubuntu1.1Related news
An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal parameters which are supposed to remain hidden. This has a low impact to the confidentiality, integrity, and availability of the system.
An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal parameters which are supposed to remain hidden. This has a low impact to the confidentiality, integrity, and availability of the system.
Ubuntu Security Notice 6066-1 - It was discovered that OpenStack Heat incorrectly handled certain hidden parameter values. A remote authenticated user could possibly use this issue to obtain sensitive data.