USN-4675-1: OpenStack Horizon vulnerability
5 January 2021
OpenStack Horizon could be made to redirect to a malicious URL.
- horizon - Web interface for OpenStack cloud infrastructure
Pritam Singh discovered that OpenStack Horizon incorrectly validated
certain parameters. An attacker could possibly use this issue to cause
OpenStack Horizon to redirect to a malicious URL.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.