[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:1729-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":48,"duplicates":49,"related":50,"reserved_at":9,"published_at":68,"modified_at":69,"state":9,"summary":70,"references_raw":72,"kevs":221,"epss":9,"epss_history":222,"metrics":223,"affected":224},"SUSE-SU-2022:1729-1","Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud\n\nThis update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud fixes the following issues:\n\nSecurity fixes included on the update:\n\nardana-barbican:\n\n- Update policies to protect container secret access (SOC-11621)\n- Update policies to protect secret metadata access (SOC-11620)\n\nopenstack-neutron:\n\n- CVE-2021-40085: Fixed arbitrary dnsmasq reconfiguration via extra_dhcp_opts (bsc#1189794).\n\nrubygem-sinatra:\n\n- CVE-2022-29970: Fixed path traversal possible outside of public_dir when serving static files (bsc#1199138).\n\npython-XStatic-jquery-ui:\n\n- CVE-2021-41182: Fixed XSS in the `altField` option of the Datepicker widget (bsc#1192070)\n- CVE-2021-41183: Fixed XSS in the `of` option of the `.position()` util (bsc#1192073)\n- CVE-2021-41184: Fixed XSS in `*Text` options of the Datepicker widget (bsc#1192075)\n\npython-lxml:\n\n- CVE-2018-19787: Fixed that the lxml.html.clean module does remove javascript in lxml/html/clean.py (bsc#1118088).\n- CVE-2020-27783: Fixed mXSS due to the use of improper parser (bsc#1179534).\n- CVE-2021-28957: Fixed missing input sanitization for formaction HTML5 attributes that may have led to XSS (bsc#1184177).\n- CVE-2021-43818: Fixed HTML Cleaner that allowed crafted and SVG embedded scripts to pass through (bsc#1193752).\n\nopenstack-barbican:\n\n- CVE-2022-23451: Disallows authenticated users to add/modify/delete arbitrary metadata on any secret (bsc#1194952).\n- CVE-2022-23452: Disallows anyone with an admin role to add their secrets to a different project's containers (bsc#1194954).\n\ngrafana:\n\n- CVE-2021-44716: Fixed net/http: limit growth of header canonicalization cache (bsc#1193597).\n\nopenstack-keystone:\n\n- CVE-2021-38155: Fixed information disclosure during account locking (bsc#1189390).\n\nNon-security fixes included on the update:\n\nChanges in ardana-barbican:\n- Update to version 9.0+git.1644879908.8a641c1:\n  * Update policies to protect container secret access (SOC-11621)\n\n- Update to version 9.0+git.1643052417.9a3348e:\n  * update policies to protect secret metadata access (SOC-11620)\n\nChanges in grafana:\n- Add CVE-2021-43813.patch (bsc#1193688, CVE-2021-43813)\n  * directory traversal vulnerability for .md files \n\n- Bump Go to 1.16 (bsc#1193597, CVE-2021-44716)\n  * Fix Go net/http: limit growth of header canonicalization cache\n\nChanges in openstack-barbican:\n- Add patches (0001-Fix-RBAC-and-ACL-access-for-managing-secret-containe.patch\n  and 0001-Fix-policy-for-adding-a-secret-to-a-container.patch) to fix\n  the legacy policy rules for adding a secret to a container and removing\n  a secret from a container. bsc#1194954,CVE-2022-23452\n\n- Add patch (0001-Fix-secret-metadata-access-rules.patch) to fix the\n  legacy policy rules for accessing secret metadata by checking that\n  the user making the request is authenticated for the project that\n  owns the secret. bsc#1194952,CVE-2022-23451\n\nChanges in openstack-cinder:\n- Update to version cinder-13.0.10.dev24:\n  * Correct group:reset\\_group\\_snapshot\\_status policy\n\nChanges in openstack-cinder:\n- Update to version cinder-13.0.10.dev24:\n  * Correct group:reset\\_group\\_snapshot\\_status policy\n\nChanges in openstack-heat-gbp:\n- Update to version group-based-policy-automation-14.0.1.dev4:\n  * Add support for yoga\n\n- Update to version group-based-policy-automation-14.0.1.dev3:\n  * Python2/3 compatibility fixes\n\n- Update to version group-based-policy-automation-14.0.1.dev2:\n  * Add support for xena\n\n- Update to version group-based-policy-automation-14.0.1.dev1:\n  * Remove py27 from gate jobs\n  14.0.0\n\nChanges in openstack-horizon-plugin-gbp-ui:\n- Update to version group-based-policy-ui-14.0.1.dev3:\n  * Add support for yoga\n\n- Update to version group-based-policy-ui-14.0.1.dev2:\n  * Python2/3 compatibility changes\n\n- Update to version group-based-policy-ui-14.0.1.dev1:\n  * Add support for xena\n  14.0.0\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev18:\n  * Cleanup stable/rocky legacy jobs\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev18:\n  * Cleanup stable/rocky legacy jobs\n\nChanges in openstack-keystone:\n- Update to version keystone-14.2.1.dev9:\n  * Delete system role assignments from system\\_assignment table\n\nChanges in openstack-keystone:\n- Add patch (0001-Hide-AccountLocked-exception-from-end-users.patch) to fix\n  the problem where AccountLocked exception discloses sensitive information.\n  bsc#1189390,CVE-2021-38155\n\n- Update to version keystone-14.2.1.dev9:\n  * Delete system role assignments from system\\_assignment table\n\nChanges in openstack-neutron-gbp:\n- Update to version group-based-policy-14.0.1.dev33:\n  * Populate network mtu for erspan\n\n- Update to version group-based-policy-14.0.1.dev32:\n  * ERSPAN config error when Openstack port is created in a different project than network it belongs to\n  2014.2.rc1\n\n- Update to version group-based-policy-14.0.1.dev31:\n  * Python2/3 compatibility fixes\n  2014.2.0rc1\n\n- Update to version group-based-policy-14.0.1.dev29:\n  * Fix oslo\\_i18n usage\n\n- Update to version group-based-policy-14.0.1.dev27:\n  * Update mechanism\\_driver cache\n  2014.2.rc1\n\n- Update to version group-based-policy-14.0.1.dev26:\n  * Add support for xena\n\n- Update to version group-based-policy-14.0.1.dev24:\n  * update\\_floatingip\\_status\\_while\\_deleting\\_the\\_vm\n\n- Update to version group-based-policy-14.0.1.dev22:\n  * Updating host id by appending pid in existing host id\n  2014.2.0rc1\n\n- Update to version group-based-policy-14.0.1.dev20:\n  * Revert 'Add workaround to get\\_subnets'\n\nChanges in python-lxml:\n- Fix bsc#1179534 (CVE-2020-27783)\n  mXSS due to the use of improper parser \n  Patch files: 0001-CVE-2020-27783.patch 0002-CVE-2020-27783.patch\n- Fix bsc#1118088 (CVE-2018-19787)\n  lxml/html/clean.py in the lxml.html.clean module does not remove\n  javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks\n  Patch file: 0001-CVE-2018-19787.patch\n- Fix bsc#1184177 (CVE-2021-28957)\n  missing input sanitization for formaction HTML5 attributes may lead to XSS\n  Patch file: 0001-CVE-2021-28957.patch\n- Fix bsc#1193752 (CVE-2021-43818)\n  Cleaner: Remove SVG image data URLs since they can embed script content.\n  Reported as GHSL-2021-1037 and GHSL-2021-1038 \n  Patch files 0001-CVE-2021-43818.patch 0002-CVE-2021-43818.patch\n\nChanges in openstack-neutron-doc:\n- Update to version neutron-13.0.8.dev206:\n  * Wait longer before deleting DPDK vhu trunk bridges\n\n- Update to version neutron-13.0.8.dev205:\n  * Do no use '--strict' for OF deletion in TRANSIENT\\_TABLE\n\n- Update to version neutron-13.0.8.dev203:\n  * Populate self.floating\\_ips\\_dict using 'ip rule' information\n\n- Update to version neutron-13.0.8.dev201:\n  * [Functional] Wait for the initial state of ha router before test\n  * Don't setup bridge controller if it is already set\n\n- Update to version neutron-13.0.8.dev198:\n  * Remove dhcp\\_extra\\_opt name after first newline character\n\n- Update to version neutron-13.0.8.dev196:\n  * [L3] Use processing queue for network update events\n  * Add extra logs to the network update callback in L3 agent\n\n- Update to version neutron-13.0.8.dev192:\n  * Remove dhcp\\_extra\\_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev190:\n  * Don't use singleton in routes.middleware.RoutesMiddleware\n\n- Update to version neutron-13.0.8.dev189:\n  * Fix notify listener syntax for SEGMENT\\_HOST\\_MAPPING\n\n- Update to version neutron-13.0.8.dev188:\n  * Clean port forwarding cache when router is DOWN\n\n- Update to version neutron-13.0.8.dev186:\n  * Remove FIP agent's gw port when L3 agent is deleted\n\n- Update to version neutron-13.0.8.dev184:\n  * Force to close http connection after notify about HA router status\n\n- Update to version neutron-13.0.8.dev183:\n  * Don't configure dnsmasq entries for 'network' ports\n\n- Update to version neutron-13.0.8.dev181:\n  * Exclude fallback tunnel devices from netns cleanup\n\n- Update to version neutron-13.0.8.dev180:\n  * [DVR] Send allowed address pairs info to the L3 agents\n  * designate: allow PTR zone creation to fail\n  * Don't try to create default SG when security groups are disabled\n\n- Update to version neutron-13.0.8.dev174:\n  * Fix update of trunk subports during live migration\n\n- Update to version neutron-13.0.8.dev172:\n  * [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses\n\n- Update to version neutron-13.0.8.dev170:\n  * Call install\\_ingress\\_direct\\_goto\\_flows() when ovs restarts\n\n- Update to version neutron-13.0.8.dev168:\n  * Fix multicast traffic with IGMP snooping enabled\n\n- Update to version neutron-13.0.8.dev166:\n  * Fix OVS conjunctive IP flows cleanup\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev206:\n  * Wait longer before deleting DPDK vhu trunk bridges\n\n- Update to version neutron-13.0.8.dev205:\n  * Do no use '--strict' for OF deletion in TRANSIENT\\_TABLE\n\n- Update to version neutron-13.0.8.dev203:\n  * Populate self.floating\\_ips\\_dict using 'ip rule' information\n\n- Update to version neutron-13.0.8.dev201:\n  * [Functional] Wait for the initial state of ha router before test\n  * Don't setup bridge controller if it is already set\n\n- Update to version neutron-13.0.8.dev198:\n  * Remove dhcp\\_extra\\_opt name after first newline character\n\n- Update to version neutron-13.0.8.dev196:\n  * [L3] Use processing queue for network update events\n  * Add extra logs to the network update callback in L3 agent\n\n- Remove cve-2021-40085-stable-rocky.patch (merged upstream)\n\n- Update to version neutron-13.0.8.dev192:\n  * Remove dhcp\\_extra\\_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev190:\n  * Don't use singleton in routes.middleware.RoutesMiddleware\n\n- Update to version neutron-13.0.8.dev189:\n  * Fix notify listener syntax for SEGMENT\\_HOST\\_MAPPING\n\n- Add cve-2021-40085-stable-rocky.patch (bsc#1189794, CVE-2021-40085) \n  * Remove dhcp_extra_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev188:\n  * Clean port forwarding cache when router is DOWN\n\n- Update to version neutron-13.0.8.dev186:\n  * Remove FIP agent's gw port when L3 agent is deleted\n\n- Update to version neutron-13.0.8.dev184:\n  * Force to close http connection after notify about HA router status\n\n- Update to version neutron-13.0.8.dev183:\n  * Don't configure dnsmasq entries for 'network' ports\n\n- Update to version neutron-13.0.8.dev181:\n  * Exclude fallback tunnel devices from netns cleanup\n\n- Update to version neutron-13.0.8.dev180:\n  * [DVR] Send allowed address pairs info to the L3 agents\n  * designate: allow PTR zone creation to fail\n  * Don't try to create default SG when security groups are disabled\n\n- Update to version neutron-13.0.8.dev174:\n  * Fix update of trunk subports during live migration\n\n- Update to version neutron-13.0.8.dev172:\n  * [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses\n\n- Update to version neutron-13.0.8.dev170:\n  * Call install\\_ingress\\_direct\\_goto\\_flows() when ovs restarts\n\n- Update to version neutron-13.0.8.dev168:\n  * Fix multicast traffic with IGMP snooping enabled\n\n- Update to version neutron-13.0.8.dev166:\n  * Fix OVS conjunctive IP flows cleanup\n\nChanges in python-Pillow:\n- Add 030-CVE-2022-22817.patch\n   * From upstream, backported\n   * Fixes CVE-2022-22817, bsc#1194521 \n   * test from upstream updated for python2\n\n- Add 028-CVE-2022-22815.patch\n   * From upstream, backported\n   * Fixes CVE-2022-22815, bsc#1194552\n- Add 029-CVE-2022-22816.patch\n   * From upstream, backported\n   * Fixes CVE-2022-22816, bsc#1194551\n\nChanges in python-XStatic-jquery-ui:\n- Update to version 1.13.0.1 (bsc#1192070, CVE-2021-41182, bsc#1192073,\n  CVE-2021-41184, bsc#1192075,  CVE-2021-41183)\n    * Fix XSS in the altField option of the Datepicker widget \n     (CVE-2021-41182)\n    * Fix XSS in *Text options of the Datepicker widget\n     (CVE-2021-41183)\n    * Fix XSS in the of option of the .position() util\n      (CVE-2021-41184)\n    * Drop support for Query 1.7\n    * Accordion: allow function parameter for selecting header\n      elements\n    * Datepicker: add optional onUpdateDatepicker callback\n\nChanges in release-notes-suse-openstack-cloud:\n- Update to version 9.20220413:\n  * Update release notes to indicate support for SES7\n- Update to version 9.20220112:\n  * Add reference to keystone bcrypt issue to known limitations (bsc#1186380)\n\nChanges in rubygem-sinatra:\n- Add CVE-2022-29970.patch (bsc#1199138, CVE-2022-29970)\n\n  ",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46],{"_key":15},"CVE-2018-19787",{"_key":17},"CVE-2020-27783",{"_key":19},"CVE-2021-28957",{"_key":21},"CVE-2021-38155",{"_key":23},"CVE-2021-40085",{"_key":25},"CVE-2021-41182",{"_key":27},"CVE-2021-41183",{"_key":29},"CVE-2021-41184",{"_key":31},"CVE-2021-43813",{"_key":33},"CVE-2021-43818",{"_key":35},"CVE-2021-44716",{"_key":37},"CVE-2022-22815",{"_key":39},"CVE-2022-22816",{"_key":41},"CVE-2022-22817",{"_key":43},"CVE-2022-23451",{"_key":45},"CVE-2022-23452",{"_key":47},"CVE-2022-29970",[],[],[51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},"2022-05-18T14:55:52Z","2026-02-04T03:56:30.500919Z",{"cisa_kev":71,"cisa_ransomware":71,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[73,79,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,157,161,165,169,173,177,181,185,189,193,197,201,205,209,213,217],{"url":74,"sources":75,"tags":77},"https://www.suse.com/support/update/announcement/2022/suse-su-20221729-1/",[76],"osv_suse",[78],"Advisory",{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/1118088",[76],[83],"REPORT",{"url":85,"sources":86,"tags":87},"https://bugzilla.suse.com/1179534",[76],[83],{"url":89,"sources":90,"tags":91},"https://bugzilla.suse.com/1184177",[76],[83],{"url":93,"sources":94,"tags":95},"https://bugzilla.suse.com/1186380",[76],[83],{"url":97,"sources":98,"tags":99},"https://bugzilla.suse.com/1189390",[76],[83],{"url":101,"sources":102,"tags":103},"https://bugzilla.suse.com/1189794",[76],[83],{"url":105,"sources":106,"tags":107},"https://bugzilla.suse.com/1192070",[76],[83],{"url":109,"sources":110,"tags":111},"https://bugzilla.suse.com/1192073",[76],[83],{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/1192075",[76],[83],{"url":117,"sources":118,"tags":119},"https://bugzilla.suse.com/1193597",[76],[83],{"url":121,"sources":122,"tags":123},"https://bugzilla.suse.com/1193688",[76],[83],{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/1193752",[76],[83],{"url":129,"sources":130,"tags":131},"https://bugzilla.suse.com/1194521",[76],[83],{"url":133,"sources":134,"tags":135},"https://bugzilla.suse.com/1194551",[76],[83],{"url":137,"sources":138,"tags":139},"https://bugzilla.suse.com/1194552",[76],[83],{"url":141,"sources":142,"tags":143},"https://bugzilla.suse.com/1194952",[76],[83],{"url":145,"sources":146,"tags":147},"https://bugzilla.suse.com/1194954",[76],[83],{"url":149,"sources":150,"tags":151},"https://bugzilla.suse.com/1199138",[76],[83],{"url":153,"sources":154,"tags":155},"https://www.suse.com/security/cve/CVE-2018-19787",[76],[156],"WEB",{"url":158,"sources":159,"tags":160},"https://www.suse.com/security/cve/CVE-2020-27783",[76],[156],{"url":162,"sources":163,"tags":164},"https://www.suse.com/security/cve/CVE-2021-28957",[76],[156],{"url":166,"sources":167,"tags":168},"https://www.suse.com/security/cve/CVE-2021-38155",[76],[156],{"url":170,"sources":171,"tags":172},"https://www.suse.com/security/cve/CVE-2021-40085",[76],[156],{"url":174,"sources":175,"tags":176},"https://www.suse.com/security/cve/CVE-2021-41182",[76],[156],{"url":178,"sources":179,"tags":180},"https://www.suse.com/security/cve/CVE-2021-41183",[76],[156],{"url":182,"sources":183,"tags":184},"https://www.suse.com/security/cve/CVE-2021-41184",[76],[156],{"url":186,"sources":187,"tags":188},"https://www.suse.com/security/cve/CVE-2021-43813",[76],[156],{"url":190,"sources":191,"tags":192},"https://www.suse.com/security/cve/CVE-2021-43818",[76],[156],{"url":194,"sources":195,"tags":196},"https://www.suse.com/security/cve/CVE-2021-44716",[76],[156],{"url":198,"sources":199,"tags":200},"https://www.suse.com/security/cve/CVE-2022-22815",[76],[156],{"url":202,"sources":203,"tags":204},"https://www.suse.com/security/cve/CVE-2022-22816",[76],[156],{"url":206,"sources":207,"tags":208},"https://www.suse.com/security/cve/CVE-2022-22817",[76],[156],{"url":210,"sources":211,"tags":212},"https://www.suse.com/security/cve/CVE-2022-23451",[76],[156],{"url":214,"sources":215,"tags":216},"https://www.suse.com/security/cve/CVE-2022-23452",[76],[156],{"url":218,"sources":219,"tags":220},"https://www.suse.com/security/cve/CVE-2022-29970",[76],[156],[],[],[],[225,238,245,249,256,260,267,271,278,282,289,293,300,304,311,315,322,326,333,337,344,348,355,359,366,370,377,381,388,395,402,409,416,423,430,437,444,451,458,465,472,479,486,493,500],{"ecosystem":226,"name":227,"vendor":228,"product":229,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":229,"source":9,"versions":231},"SUSE Linux Enterprise","ardana-barbican","suse","ardana-barbican&distro=SUSE OpenStack Cloud 9","rpm",[232],{"version":233,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":236,"version_end_type":237,"fixed_in":9},"lt9_0+git_1644879908_8a641c1_3_13_1",true,"ecosystem","9.0+git.1644879908.8a641c1-3.13.1","excluding",{"ecosystem":226,"name":239,"vendor":228,"product":240,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":240,"source":9,"versions":241},"grafana","grafana&distro=SUSE OpenStack Cloud 9",[242],{"version":243,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":244,"version_end_type":237,"fixed_in":9},"lt6_7_4_3_26_1","6.7.4-3.26.1",{"ecosystem":226,"name":239,"vendor":228,"product":246,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":246,"source":9,"versions":247},"grafana&distro=SUSE OpenStack Cloud Crowbar 9",[248],{"version":243,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":244,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":250,"vendor":228,"product":251,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":251,"source":9,"versions":252},"openstack-barbican","openstack-barbican&distro=SUSE OpenStack Cloud 9",[253],{"version":254,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":255,"version_end_type":237,"fixed_in":9},"lt7_0_1~dev24_3_14_1","7.0.1~dev24-3.14.1",{"ecosystem":226,"name":250,"vendor":228,"product":257,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":257,"source":9,"versions":258},"openstack-barbican&distro=SUSE OpenStack Cloud Crowbar 9",[259],{"version":254,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":255,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":261,"vendor":228,"product":262,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":262,"source":9,"versions":263},"openstack-cinder","openstack-cinder&distro=SUSE OpenStack Cloud 9",[264],{"version":265,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":266,"version_end_type":237,"fixed_in":9},"lt13_0_10~dev24_3_34_2","13.0.10~dev24-3.34.2",{"ecosystem":226,"name":261,"vendor":228,"product":268,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":268,"source":9,"versions":269},"openstack-cinder&distro=SUSE OpenStack Cloud Crowbar 9",[270],{"version":265,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":266,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":272,"vendor":228,"product":273,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":273,"source":9,"versions":274},"openstack-heat-gbp","openstack-heat-gbp&distro=SUSE OpenStack Cloud 9",[275],{"version":276,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":277,"version_end_type":237,"fixed_in":9},"lt14_0_1~dev4_3_9_1","14.0.1~dev4-3.9.1",{"ecosystem":226,"name":272,"vendor":228,"product":279,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":279,"source":9,"versions":280},"openstack-heat-gbp&distro=SUSE OpenStack Cloud Crowbar 9",[281],{"version":276,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":277,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":283,"vendor":228,"product":284,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":284,"source":9,"versions":285},"openstack-horizon-plugin-gbp-ui","openstack-horizon-plugin-gbp-ui&distro=SUSE OpenStack Cloud 9",[286],{"version":287,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":288,"version_end_type":237,"fixed_in":9},"lt14_0_1~dev3_3_9_1","14.0.1~dev3-3.9.1",{"ecosystem":226,"name":283,"vendor":228,"product":290,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":290,"source":9,"versions":291},"openstack-horizon-plugin-gbp-ui&distro=SUSE OpenStack Cloud Crowbar 9",[292],{"version":287,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":288,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":294,"vendor":228,"product":295,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":295,"source":9,"versions":296},"openstack-ironic","openstack-ironic&distro=SUSE OpenStack Cloud 9",[297],{"version":298,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":299,"version_end_type":237,"fixed_in":9},"lt11_1_5~dev18_3_28_2","11.1.5~dev18-3.28.2",{"ecosystem":226,"name":294,"vendor":228,"product":301,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":301,"source":9,"versions":302},"openstack-ironic&distro=SUSE OpenStack Cloud Crowbar 9",[303],{"version":298,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":299,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":305,"vendor":228,"product":306,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":306,"source":9,"versions":307},"openstack-keystone","openstack-keystone&distro=SUSE OpenStack Cloud 9",[308],{"version":309,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":310,"version_end_type":237,"fixed_in":9},"lt14_2_1~dev9_3_28_2","14.2.1~dev9-3.28.2",{"ecosystem":226,"name":305,"vendor":228,"product":312,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":312,"source":9,"versions":313},"openstack-keystone&distro=SUSE OpenStack Cloud Crowbar 9",[314],{"version":309,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":310,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":316,"vendor":228,"product":317,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":317,"source":9,"versions":318},"openstack-neutron-gbp","openstack-neutron-gbp&distro=SUSE OpenStack Cloud 9",[319],{"version":320,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":321,"version_end_type":237,"fixed_in":9},"lt14_0_1~dev33_3_31_1","14.0.1~dev33-3.31.1",{"ecosystem":226,"name":316,"vendor":228,"product":323,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":323,"source":9,"versions":324},"openstack-neutron-gbp&distro=SUSE OpenStack Cloud Crowbar 9",[325],{"version":320,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":321,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":327,"vendor":228,"product":328,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":328,"source":9,"versions":329},"openstack-neutron","openstack-neutron&distro=SUSE OpenStack Cloud 9",[330],{"version":331,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":332,"version_end_type":237,"fixed_in":9},"lt13_0_8~dev206_3_40_1","13.0.8~dev206-3.40.1",{"ecosystem":226,"name":327,"vendor":228,"product":334,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":334,"source":9,"versions":335},"openstack-neutron&distro=SUSE OpenStack Cloud Crowbar 9",[336],{"version":331,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":332,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":338,"vendor":228,"product":339,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":339,"source":9,"versions":340},"python-lxml","python-lxml&distro=SUSE OpenStack Cloud 9",[341],{"version":342,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":343,"version_end_type":237,"fixed_in":9},"lt4_2_4_3_3_1","4.2.4-3.3.1",{"ecosystem":226,"name":338,"vendor":228,"product":345,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":345,"source":9,"versions":346},"python-lxml&distro=SUSE OpenStack Cloud Crowbar 9",[347],{"version":342,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":343,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":349,"vendor":228,"product":350,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":350,"source":9,"versions":351},"python-Pillow","python-Pillow&distro=SUSE OpenStack Cloud 9",[352],{"version":353,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":354,"version_end_type":237,"fixed_in":9},"lt5_2_0_3_17_1","5.2.0-3.17.1",{"ecosystem":226,"name":349,"vendor":228,"product":356,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":356,"source":9,"versions":357},"python-Pillow&distro=SUSE OpenStack Cloud Crowbar 9",[358],{"version":353,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":354,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":360,"vendor":228,"product":361,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":361,"source":9,"versions":362},"python-XStatic-jquery-ui","python-XStatic-jquery-ui&distro=SUSE OpenStack Cloud 9",[363],{"version":364,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":365,"version_end_type":237,"fixed_in":9},"lt1_13_0_1_4_3_1","1.13.0.1-4.3.1",{"ecosystem":226,"name":360,"vendor":228,"product":367,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":367,"source":9,"versions":368},"python-XStatic-jquery-ui&distro=SUSE OpenStack Cloud Crowbar 9",[369],{"version":364,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":365,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":371,"vendor":228,"product":372,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":372,"source":9,"versions":373},"release-notes-suse-openstack-cloud","release-notes-suse-openstack-cloud&distro=SUSE OpenStack Cloud 9",[374],{"version":375,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":376,"version_end_type":237,"fixed_in":9},"lt9_20220413_3_30_1","9.20220413-3.30.1",{"ecosystem":226,"name":371,"vendor":228,"product":378,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":378,"source":9,"versions":379},"release-notes-suse-openstack-cloud&distro=SUSE OpenStack Cloud Crowbar 9",[380],{"version":375,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":376,"version_end_type":237,"fixed_in":9},{"ecosystem":226,"name":382,"vendor":228,"product":383,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":383,"source":9,"versions":384},"rubygem-sinatra","rubygem-sinatra&distro=SUSE OpenStack Cloud Crowbar 9",[385],{"version":386,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":387,"version_end_type":237,"fixed_in":9},"lt1_4_6_4_3_1","1.4.6-4.3.1",{"ecosystem":226,"name":389,"vendor":228,"product":390,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":390,"source":9,"versions":391},"venv-openstack-barbican","venv-openstack-barbican&distro=SUSE OpenStack Cloud 9",[392],{"version":393,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":394,"version_end_type":237,"fixed_in":9},"lt7_0_1~dev24_3_35_2","7.0.1~dev24-3.35.2",{"ecosystem":226,"name":396,"vendor":228,"product":397,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":397,"source":9,"versions":398},"venv-openstack-cinder","venv-openstack-cinder&distro=SUSE OpenStack Cloud 9",[399],{"version":400,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":401,"version_end_type":237,"fixed_in":9},"lt13_0_10~dev24_3_38_1","13.0.10~dev24-3.38.1",{"ecosystem":226,"name":403,"vendor":228,"product":404,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":404,"source":9,"versions":405},"venv-openstack-designate","venv-openstack-designate&distro=SUSE OpenStack Cloud 9",[406],{"version":407,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":408,"version_end_type":237,"fixed_in":9},"lt7_0_2~dev2_3_35_1","7.0.2~dev2-3.35.1",{"ecosystem":226,"name":410,"vendor":228,"product":411,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":411,"source":9,"versions":412},"venv-openstack-glance","venv-openstack-glance&distro=SUSE OpenStack Cloud 9",[413],{"version":414,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":415,"version_end_type":237,"fixed_in":9},"lt17_0_1~dev30_3_33_1","17.0.1~dev30-3.33.1",{"ecosystem":226,"name":417,"vendor":228,"product":418,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":418,"source":9,"versions":419},"venv-openstack-heat","venv-openstack-heat&distro=SUSE OpenStack Cloud 9",[420],{"version":421,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":422,"version_end_type":237,"fixed_in":9},"lt11_0_4~dev4_3_35_1","11.0.4~dev4-3.35.1",{"ecosystem":226,"name":424,"vendor":228,"product":425,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":425,"source":9,"versions":426},"venv-openstack-horizon","venv-openstack-horizon&distro=SUSE OpenStack Cloud 9",[427],{"version":428,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":429,"version_end_type":237,"fixed_in":9},"lt14_1_1~dev11_4_39_1","14.1.1~dev11-4.39.1",{"ecosystem":226,"name":431,"vendor":228,"product":432,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":432,"source":9,"versions":433},"venv-openstack-ironic","venv-openstack-ironic&distro=SUSE OpenStack Cloud 9",[434],{"version":435,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":436,"version_end_type":237,"fixed_in":9},"lt11_1_5~dev18_4_33_1","11.1.5~dev18-4.33.1",{"ecosystem":226,"name":438,"vendor":228,"product":439,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":439,"source":9,"versions":440},"venv-openstack-keystone","venv-openstack-keystone&distro=SUSE OpenStack Cloud 9",[441],{"version":442,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":443,"version_end_type":237,"fixed_in":9},"lt14_2_1~dev9_3_36_1","14.2.1~dev9-3.36.1",{"ecosystem":226,"name":445,"vendor":228,"product":446,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":446,"source":9,"versions":447},"venv-openstack-magnum","venv-openstack-magnum&distro=SUSE OpenStack Cloud 9",[448],{"version":449,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":450,"version_end_type":237,"fixed_in":9},"lt7_2_1~dev1_4_35_1","7.2.1~dev1-4.35.1",{"ecosystem":226,"name":452,"vendor":228,"product":453,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":453,"source":9,"versions":454},"venv-openstack-manila","venv-openstack-manila&distro=SUSE OpenStack Cloud 9",[455],{"version":456,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":457,"version_end_type":237,"fixed_in":9},"lt7_4_2~dev60_3_41_1","7.4.2~dev60-3.41.1",{"ecosystem":226,"name":459,"vendor":228,"product":460,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":460,"source":9,"versions":461},"venv-openstack-monasca-ceilometer","venv-openstack-monasca-ceilometer&distro=SUSE OpenStack Cloud 9",[462],{"version":463,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":464,"version_end_type":237,"fixed_in":9},"lt1_8_2~dev3_3_35_1","1.8.2~dev3-3.35.1",{"ecosystem":226,"name":466,"vendor":228,"product":467,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":467,"source":9,"versions":468},"venv-openstack-monasca","venv-openstack-monasca&distro=SUSE OpenStack Cloud 9",[469],{"version":470,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":471,"version_end_type":237,"fixed_in":9},"lt2_7_1~dev10_3_37_1","2.7.1~dev10-3.37.1",{"ecosystem":226,"name":473,"vendor":228,"product":474,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":474,"source":9,"versions":475},"venv-openstack-neutron","venv-openstack-neutron&distro=SUSE OpenStack Cloud 9",[476],{"version":477,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":478,"version_end_type":237,"fixed_in":9},"lt13_0_8~dev206_6_39_1","13.0.8~dev206-6.39.1",{"ecosystem":226,"name":480,"vendor":228,"product":481,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":481,"source":9,"versions":482},"venv-openstack-nova","venv-openstack-nova&distro=SUSE OpenStack Cloud 9",[483],{"version":484,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":485,"version_end_type":237,"fixed_in":9},"lt18_3_1~dev91_3_39_1","18.3.1~dev91-3.39.1",{"ecosystem":226,"name":487,"vendor":228,"product":488,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":488,"source":9,"versions":489},"venv-openstack-octavia","venv-openstack-octavia&distro=SUSE OpenStack Cloud 9",[490],{"version":491,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":492,"version_end_type":237,"fixed_in":9},"lt3_2_3~dev7_4_35_1","3.2.3~dev7-4.35.1",{"ecosystem":226,"name":494,"vendor":228,"product":495,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":495,"source":9,"versions":496},"venv-openstack-sahara","venv-openstack-sahara&distro=SUSE OpenStack Cloud 9",[497],{"version":498,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":499,"version_end_type":237,"fixed_in":9},"lt9_0_2~dev15_3_35_1","9.0.2~dev15-3.35.1",{"ecosystem":226,"name":501,"vendor":228,"product":502,"cpe_part":9,"purl_type":230,"purl_namespace":228,"purl_name":502,"source":9,"versions":503},"venv-openstack-swift","venv-openstack-swift&distro=SUSE OpenStack Cloud 9",[504],{"version":505,"is_range":234,"range_type":235,"version_start":9,"version_start_type":9,"version_end":506,"version_end_type":237,"fixed_in":9},"lt2_19_2~dev48_2_30_1","2.19.2~dev48-2.30.1"]