[PKG-Openstack-devel] Bug#787654: openstack-trove: CVE-2015-3156: multiple insecure /tmp file usage issues
Salvatore Bonaccorso
carnil at debian.org
Wed Jun 3 20:17:18 UTC 2015
Source: openstack-trove
Version: 2015.1.0-1
Severity: normal
Tags: security upstream
Hi,
the following vulnerability was published for openstack-trove.
CVE-2015-3156[0]:
multiple insecure /tmp file usage issues
More information can be found in the Red Hat bugzilla[1], but at the
time of writing this bugreport here are no upstream patches (since
upstream seem to disagree with downstreams).
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2015-3156
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1216073
[2] https://bugzilla.novell.com/show_bug.cgi?id=929535
[3] http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-3156.html
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
More information about the Openstack-devel
mailing list