novnc allows open redirection, which could allow phishing attempts. Risk: By modifying untrusted URL input to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials. Because the server name in the modified link is identical to the original site, phishing attempts could have a more trustworthy appearance. https://bugs.launchpad.net/nova/+bug/1927677
Created openstack-nova tracking bugs for this issue: Affects: openstack-rdo [bug 1961446]
Initial OSSA now out of date: https://security.openstack.org/ossa/OSSA-2021-002.html Upstream fixes have been released: 21.2.3, 22.3.0, and 23.1.0 together with two additional stable-train commits: * https://opendev.org/openstack/nova/commit/04d48527b62a35d912f93bc75613a6cca606df66 * https://opendev.org/openstack/nova/commit/8906552cfc2525a44251d4cf313ece61e57251eb
Additional references: https://bugs.python.org/issue43223 https://github.com/python/cpython/pull/24848
This issue has been addressed in the following products: Red Hat OpenStack Platform 16.2 Via RHSA-2022:0999 https://access.redhat.com/errata/RHSA-2022:0999
This issue has been addressed in the following products: Red Hat OpenStack Platform 16.1 Via RHSA-2022:0983 https://access.redhat.com/errata/RHSA-2022:0983
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-3654