CVE-2023-2088

Note

The fix for this CVE was reverted in USN-6073-6 to USN-6073-9
as it was causing problems detaching volumes.
Marking this CVE as deferred until a proper stable fix is
available.

Package	Release	Status
cinder Launchpad, Ubuntu, Debian	bionic	Deferred (2023-05-31)
	focal	Deferred (2023-05-31)
	jammy	Deferred (2023-05-31)
	kinetic	Deferred (2023-05-31)
	lunar	Deferred (2023-05-31)
	trusty	Ignored (out of standard support)
	upstream	Needs triage
	xenial	Deferred (2023-05-31)
nova Launchpad, Ubuntu, Debian	bionic	Deferred (2023-05-31)
	focal	Deferred (2023-05-31)
	jammy	Deferred (2023-05-31)
	kinetic	Deferred (2023-05-31)
	lunar	Deferred (2023-05-31)
	trusty	Ignored (out of standard support)
	upstream	Needs triage
	xenial	Deferred (2023-05-31)
python-glance-store Launchpad, Ubuntu, Debian	bionic	Deferred (2023-05-31)
	focal	Deferred (2023-05-31)
	jammy	Deferred (2023-05-31)
	kinetic	Deferred (2023-05-31)
	lunar	Deferred (2023-05-31)
	trusty	Ignored (out of standard support)
	upstream	Needs triage
	xenial	Deferred (2023-05-31)
python-os-brick Launchpad, Ubuntu, Debian	bionic	Deferred (2023-05-31)
	focal	Deferred (2023-05-31)
	jammy	Deferred (2023-05-31)
	kinetic	Deferred (2023-05-31)
	lunar	Deferred (2023-05-31)
	trusty	Ignored (out of standard support)
	upstream	Needs triage
	xenial	Deferred (2023-05-31)

Parameter	Value
Base score	6.5
Attack vector	Network
Attack complexity	Low
Privileges required	Low
User interaction	None
Scope	Unchanged
Confidentiality	High
Integrity impact	None
Availability impact	None
Vector	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Security

CVE-2023-2088

Notes

Priority

Cvss 3 Severity Score

Status

Severity score breakdown

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading