SUSE-SU-2020:0311-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 03 Feb 2020, 17:18
Last modified:04 Feb 2026, 03:38

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

03 Feb 2020, 17:18
Published
Vulnerability first disclosed
04 Feb 2026, 03:38
Last Modified
Vulnerability information updated

Description

Security update for crowbar-core, crowbar-openstack, openstack-neutron-fwaas, rubygem-crowbar-client This update for crowbar-core, crowbar-openstack, openstack-neutron-fwaas, rubygem-crowbar-client contains the following fixes: Security fixes for rubygem-crowbar-client: - CVE-2018-17954: Fixed an issue where crowbar was leaking the secret admin passwords to all nodes (bsc#1117080) Changes in crowbar-core: - Update to version 4.0+git.1578392992.fabfd186c: * Avoid nil crash when provisioner attributes are not set (bsc#1160048) - Update to version 4.0+git.1578294389.acc7385d5: * Adding CVE-2019-16770 to the ignore list, regarding SOC-10999. Changes in crowbar-openstack: - Update to version 4.0+git.1579171175.d53ab6363: * tempest: tempest run filters as templates (SOC-11052) * Add tempest filters based on services (SOC-9801) Changes in openstack-neutron-fwaas: - Remove the patch that was deleting the tempest entry point and enable tempest tests.

Affected Systems

  • susecrowbar-core&distro=SUSE OpenStack Cloud 7

    < 4.0+git.1578392992.fabfd186c-9.63.1

  • susecrowbar-openstack&distro=SUSE OpenStack Cloud 7

    < 4.0+git.1579171175.d53ab6363-9.68.1

  • suseopenstack-neutron-fwaas-doc&distro=SUSE OpenStack Cloud 7

    < 9.0.2~dev5-4.6.1

  • suseopenstack-neutron-fwaas&distro=SUSE OpenStack Cloud 7

    < 9.0.2~dev5-4.6.1

  • suserubygem-crowbar-client&distro=SUSE OpenStack Cloud 7

    < 3.9.1-7.17.1

References (5)