Back to bug 2155652
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Anten Skrabec | 2022-12-21 18:21:51 UTC | CC | security-response-team | |
| Anten Skrabec | 2022-12-21 18:27:45 UTC | Blocks | 2155601 | |
| Anten Skrabec | 2022-12-21 18:28:21 UTC | Summary | EMBARGOED oslo-privsep: privilege escalation vulnerability | oslo-privsep: privilege escalation vulnerability |
| CC | rhos-maint | |||
| Deadline | 2022-12-20 | |||
| Group | qe_staff, security | |||
| Anten Skrabec | 2022-12-21 18:30:12 UTC | Alias | CVE-2022-38065 | |
| Summary | oslo-privsep: privilege escalation vulnerability | CVE-2022-38065 oslo-privsep: privilege escalation vulnerability | ||
| Anten Skrabec | 2022-12-21 18:30:44 UTC | Doc Text | A privilege escalation vulnerability exists in the oslo.privsep functionality of OpenStack git master 05194e7618 and prior. Overly permissive functionality within tools leveraging this library within a container can lead increased privileges. | A privilege escalation vulnerability exists in the oslo.privsep functionality of OpenStack. Overly permissive functionality within tools leveraging this library within a container can lead increased privileges. |
| Paige Jung | 2022-12-21 18:38:59 UTC | Doc Text | A privilege escalation vulnerability exists in the oslo.privsep functionality of OpenStack. Overly permissive functionality within tools leveraging this library within a container can lead increased privileges. | A privilege escalation flaw was found in the oslo.privsep functionality in OpenStack. Overly permissive functionality in the tools leveraging this library within a container can lead to increased privileges. |
| Jon Schlueter | 2022-12-21 20:57:31 UTC | Doc Type | --- | If docs needed, set a value |
| Anten Skrabec | 2022-12-22 18:54:28 UTC | Depends On | 2155888 | |
| Anten Skrabec | 2022-12-22 18:55:11 UTC | Depends On | 2155891, 2155889, 2155892, 2155890 | |
| Anten Skrabec | 2022-12-22 21:01:06 UTC | Doc Text | A privilege escalation flaw was found in the oslo.privsep functionality in OpenStack. Overly permissive functionality in the tools leveraging this library within a container can lead to increased privileges. | A privilege escalation flaw was found in the oslo-privsep functionality in OpenStack. Overly permissive functionality in the tools leveraging this library within a container can lead to increased privileges. |
| Anten Skrabec | 2022-12-22 21:02:11 UTC | Comment | 0 | updated |
| Hervé Beraud | 2023-01-06 13:48:11 UTC | CC | hberaud | |
| Red Hat Bugzilla | 2023-07-07 08:35:49 UTC | CC | smooney | |
| Assignee | security-response-team | nobody | ||
| CC | security-response-team |
Back to bug 2155652