Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5756-1] nova security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5756-1] nova security update


Chronologisch Thread  
    < Chronologisch >       < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5756-1] nova security update
  • Date: Wed, 21 Aug 2024 11:10:38 +0000
  • List-archive: https://lists.debian.org/msgid-search/ZsXLLmaI7YTLMRK7 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=pP7Jxwa89pXk0Uv5RrJo4QR/uScmrJBnpd9s4iX91VU=; b=Ge MQr4TrOEUH30l0ceyk3qEGWrb8kRapzGfeSEI6a3d7B5KT09QAKzemxcGZ+Udrk0cuqXKAkj8B/hW Ue7r0iMcVV1QWz+achVtJbseU0GeTsbrlhI6wDvsWCgRcE2wBswyBYHEa8PcxKr+VywKgI4K91egT daw0vyGcvghx0j7y8b5S+r4Jv0QFPlWe8+MFd1ZlIS9ePnoYwGMiIRGbIkhaxyGRDcBB4ES18A52p E0kk8T0TK5fI14GrT8AAfYufLu7NY9o3E4a5IEHUzIJn7acqAP62KNfUjlRc9O8tKjJeh+27k13ay fDLzArPfrLQFW+/rLWFIyP14+LGT3DiQ==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Wed, 21 Aug 2024 11:11:04 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <Ctti-r2oeaB.A._4jN.ItcxmB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5756-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
August 21, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : nova
CVE ID : CVE-2024-32498

Martin Kaesberger discovered a vulnerability which affects multiple
OpenStack components (Nova, Glance and Cinder): Malformed QCOW2 disk
images may result in the disclosure of arbitrary files.

For the stable distribution (bookworm), this problem has been fixed in
version 2:26.2.2-1~deb12u3.

We recommend that you upgrade your nova packages.

For the detailed security status of nova please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/nova

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmbFyLEACgkQEMKTtsN8
TjajxRAArWI4CQrU8rgFF53jCE7u5en8TW9vW8NnVSfp2E2cBEjU6H4/JQPQ3ZEh
keBH2JR++SqwgqG06h0OAkUZYvJs1C4CkwuX8Xj18LeySueZlGKKuBjx3XBCFxWr
1jJ8fGihdc1qKmTRJFIlQOxZrSC8sB6Qw3+23fHYDo1tofObmkJD1HlFx8zKdyHM
wyK2sL6nDWqjHRFWp8cNQZLTKrREhdely1qpzDjd7yh01XUvoQExHAw5mGlGDHSS
KvHIwrS0PM/ldc43Q12XhCoBBFvSwf11cOS5mgggFWS0KsA4Ccfte9DR6RPGlZWc
ubg6/Jb9PbkFYJa27Cysmi2z3JMkgR+071aa/WFwxh3VChg8sUibLFnCoMG6UKXu
1gFJhkrtWQBCgcNKix4U+gk3Z+OS5g74mYeRNeFhDrsuhl1/cGTQnbNzREKl+nmm
PGzeKX97od/quEgOVh9W0EOsXXo3nWguB6HCDKbE28P9+ymJFkq1Jyj1ncwri3Qk
Q03efPBxeLfT8hPHE8LkkGwHUolWBzqtfxKapJIQtnzG5emyUdwTKkUIOOjBH1yW
4LUMRbZVoq1T7vBfsJK2XFudDPSLKM42I8u4A+ihvPjzNwhO1OrR+erLg/6g3ttL
zx2pNbKvDaxkmRjAk2VY7jRPyrBJ9714JI9F3xN52aXYUNzR6P0=
=Zdsg
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5756-1] nova security update, Moritz Muehlenhoff, 21.08.2024

Archiv bereitgestellt durch MHonArc 2.6.19+.

Seitenanfang