Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 4820-1] horizon security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 4820-1] horizon security update


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 4820-1] horizon security update
  • Date: Sun, 27 Dec 2020 18:20:09 +0000
  • List-archive: https://lists.debian.org/msgid-search/20201227182009.GA6123 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=snNfz1iX1jkRRlDjdNYfQBhGuQ6ZhhzZCHWpxz7y1Q8=; b=AK NxPgrHXCPlMPvvWZgzx2Wrl/PsX7YsZyxuxSzygJvSchxt1GeOd49qE7gClp0RVSFwp1DfBTb1GKc dRDbIx30t/3Iv4gPV59I9NeoUX22Y6t9BPjkQ/NgUjTXtlEKS1lD8VPAI62fiwfGgzl4giX3ScFMj hiyyCXc6V/u4mslDn8eWPv1cwcRW8mFq/uZ+AtJAFX/0pW+qNe5euDmDvjBtpNG58OsNce3kbcSTG jXBF4pbRN3O2iu776iGZNJzO7RBsli11iQLnHEs7WMhNK90unNxVDYlOMYQ56Zp26T2eh0IYFMq9+ io1ol55pEaGU9TbnQiDXaPN40rfZ6XBw==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Sun, 27 Dec 2020 18:20:29 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <3TePuV_l65E.A.7xE.tBN6fB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4820-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
December 27, 2020 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : horizon
CVE ID : CVE-2020-29565
Debian Bug : 976872

Pritam Singh discovered an open redirect in the workflow forms of
OpenStack Horizon.

For the stable distribution (buster), this problem has been fixed in
version 3:14.0.2-3+deb10u2.

We recommend that you upgrade your horizon packages.

For the detailed security status of horizon please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/horizon

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl/o0D0ACgkQEMKTtsN8
TjYb6Q//bfq3zB7+h+QXtxPswuevJs9WnjRLUboCrFNtr1LS1dy6dPJ3nX2E8xF4
MEzZ1n8y5D1CY+xThcxcz93eN9rOAOxpCAbLk/U+IE3tt/vsf2RKzNps5yPTXi/7
AlKqS1Wm2RsjzyqfsJtWIXGoBtdDvqR7tzMsQ4IugAYh6h+Z+KHAKF75pC1496ZE
Iy1lwS+ljDN5Zgs8T/I70qCB3ielz+aQRjkY2A64Omhg3j8ATo04y8Te+8VPMpXv
RA6h/Rk2z/dGjcf107uROkxN19UALuqO0aSkfBnWfeEr3SJIvO1KRWLhUPvBueaV
dezlOLPSk1SXHYRgk8rIV8I0ilQFYbit2Hv3uxf1afswzzIJYZsIMc0n2AKPQl5f
R8iF/ClG+lcttd2MX8xBqbcXqLCyD0eaTy2UotXGKaSfW74HE9ZaPhm0zkAlTAzu
ytH5fYGBftQYCHrzCsM7qqMRPjIbQICZ0tFVlWYSmDtJfFW3alcIXA0SNIFKPDAA
OUUgNIGOZej+y5jMOY7zyElMVHFO+R1TUxv1BmQtXyyt/IKsgpvCvMwk6v5Qok23
ABXhGlTih28xqMis62tdImMH20TL8b90wWJQUabNEOpHaH+xyG4jTvw7TT6PIZXl
4bliubXiL3J4pKYZiLNjEGxHJ9eCmawsWRKbM9NI/k0ywByB72M=
=pVga
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 4820-1] horizon security update, Moritz Muehlenhoff, 27.12.2020

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang