openstack-attic/openstack-security-notes
Code Issues Proposed changes
Files
fd714a9be87eb576ec559136fcb97546033c5309
openstack-security-notes/notes
History
Malini Bhandaru fd714a9be8 Add OSSN-0014 - Cinder drivers set insecure file permissions 
This adds OSSN-0014, which covers the introduction of files with liberal
access permissions by multiple Cinder drivers in OpenStack Icehouse and
earlier. Users with access to the Cinder host and processes running
on the Cinder host can exploit the file permissions to disclose,
modify, and/or destroy user block storage data.

Closes-Bug: 1260679
Change-Id: I4ac9e746401051d85cb9cfbcad3c88b04f23106c
2014-05-29 11:59:35 -07:00
..
OSSN-0001
Add previously published security notes
2014-02-12 21:35:18 -08:00
OSSN-0002
Add previously published security notes
2014-02-12 21:35:18 -08:00
OSSN-0003
Add previously published security notes
2014-02-12 21:35:18 -08:00
OSSN-0004
Add previously published security notes
2014-02-12 21:35:18 -08:00
OSSN-0005
Add previously published security notes
2014-02-12 21:35:18 -08:00
OSSN-0006
Add previously published security notes
2014-02-12 21:35:18 -08:00
OSSN-0007
Add OSSN-0007 - unsecure libvirt live migration instructions
2014-03-06 14:59:19 -08:00
OSSN-0008
Add OSSN-0008 - DoS attack on noVNC/SPICE console due to lack of limiting
2014-03-09 09:58:57 -07:00
OSSN-0009
Add OSSN-0009 - Potential token revocation abuse via group membership
2014-04-01 19:48:58 -07:00
OSSN-0010
Add OSSN-0010 - Sample Keystone v3 policy exposes privilege escalation
2014-04-17 09:36:16 -07:00
OSSN-0011
Add OSSN-0011 - Heat templates with invalid references allows unintended network access
2014-04-04 15:18:26 -07:00
OSSN-0012
Correct typo in OSSN-0012 title
2014-04-10 00:13:58 -07:00
OSSN-0013
Adds OSSN-0013
2014-05-07 07:55:41 +01:00
OSSN-0014
Add OSSN-0014 - Cinder drivers set insecure file permissions
2014-05-29 11:59:35 -07:00