USN-5369-1: oslo.utils vulnerability
7 April 2022
oslo.utils could be made to expose sensitive information if it received a specially crafted input.
Releases
Packages
- python-oslo.utils - set of utility functions for OpenStack - Python 2.x
Details
It was discovered that oslo.utils incorrectly handled certain inputs.
An attacker could possibly use this issue to expose sensitive information.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 21.10
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04
-
python-oslo.utils
-
3.8.0-2ubuntu0.1~esm1
Available with UA Infra or UA Desktop
-
python3-oslo.utils
-
3.8.0-2ubuntu0.1~esm1
Available with UA Infra or UA Desktop
In general, a standard system update will make all the necessary changes.