CVE-2015-0271

Publication date 10 March 2015

Last updated 24 July 2024


Ubuntu priority

The log-viewing function in the Red Hat redhat-access-plugin before 6.0.3 for OpenStack Dashboard (horizon) allows remote attackers to read arbitrary files via a crafted path.

Read the notes from the security team

Status

Package Ubuntu Release Status
horizon 14.10 utopic
Not affected
14.04 LTS trusty Not in release
12.04 LTS precise
Not affected
10.04 LTS lucid Not in release

Notes


tyhicks

According to the RHSA, this issue only affects Red Hat Support plug-in (redhat-access-plugin). Horizon itself is not affected.