USN-5369-1: oslo.utils vulnerability
7 April 2022
oslo.utils could be made to expose sensitive information if it received a specially crafted input.
Releases
Packages
- python-oslo.utils - set of utility functions for OpenStack - Python 2.x
Details
It was discovered that oslo.utils incorrectly handled certain inputs.
An attacker could possibly use this issue to expose sensitive information.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 21.10
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04
-
python-oslo.utils
-
3.8.0-2ubuntu0.1~esm1
Available with Ubuntu Pro (Infra-only)
-
python3-oslo.utils
-
3.8.0-2ubuntu0.1~esm1
Available with Ubuntu Pro (Infra-only)
In general, a standard system update will make all the necessary changes.