30 Commits (master)
 

Author SHA1 Message Date
OpenDev Sysadmins 428fd1bf7e OpenDev Migration Patch 3 years ago
Doug Chivers 39c8043bdf Nova networking IPtables rules not reinstated with soft reboot 8 years ago
Nathan Kinder abb944a64d Remove wiki template 8 years ago
Nathan Kinder bf53cbc80a Corrected a simple typo in OSSN-0021 8 years ago
Stanislaw Pitucha 9aaa0e77ad OSSN-0021 - Keystone trusts on compromised account 8 years ago
Jenkins 78e62638d7 Merge "Adding OSSN-0019 - SSH Pool using auto-add policy." 8 years ago
Tim Kelsey e90df8f178 Adding OSSN-0019 - SSH Pool using auto-add policy. 8 years ago
Jenkins f17494ab48 Merge "Add OSSN-0018 - Dangerous network configuration" 8 years ago
tmcpeak e34b5c292b Adding OSSN-0017 - Session-fixation vulnerability in Horizon when using the default signed cookie sessions 8 years ago
Stanislaw Pitucha c6d62a198a Add OSSN-0018 - Dangerous network configuration 8 years ago
Nathan Kinder 5f5202470c Correct workaround in OSSN-0013 8 years ago
Jenkins 29305c9fe5 Merge "Cinder secure wipe misconfiguration will result in no wipe, on Grizzly." 8 years ago
Doug Chivers 4f3db51563 Cinder secure wipe misconfiguration will result in no wipe, on 8 years ago
Jenkins a4b7274e94 Merge "Add OSSN-0014 - Cinder drivers set insecure file permissions" 8 years ago
Nathan Kinder d342849a4a Add OSSN-0015 - Glance allows non-admin users to create public images 8 years ago
Malini Bhandaru fd714a9be8 Add OSSN-0014 - Cinder drivers set insecure file permissions 8 years ago
Robert Clark 407fb8f198 Adds OSSN-0013 8 years ago
Jenkins 3e3088b00d Merge "Add OSSN-0010 - Sample Keystone v3 policy exposes privilege escalation vulnerability" 8 years ago
Jamie Finnigan 1c3455cc2b Add OSSN-0010 - Sample Keystone v3 policy exposes privilege escalation 8 years ago
Nathan Kinder c338a1fccc Correct typo in OSSN-0012 title 8 years ago
Nathan Kinder 786d188b5d Add OSSN-0012 - OpenSSL Heartbleed vulnerability 8 years ago
Nathan Kinder f291579bfb Add OSSN-0011 - Heat templates with invalid references allows unintended network access 8 years ago
Jenkins 66136e3c69 Merge "Add gitreview file" 8 years ago
Nathan Kinder 5380798f05 Add OSSN-0009 - Potential token revocation abuse via group membership 8 years ago
Nathan Kinder af9cfa77ce Add gitreview file 8 years ago
Nathan Kinder 732ab7bec2 Add OSSN-0008 - DoS attack on noVNC/SPICE console due to lack of limiting 9 years ago
Nathan Kinder ce768e0d54 Modified templates to wrap lines at 72 characters 9 years ago
Nathan Kinder 02a381f826 Add OSSN-0007 - unsecure libvirt live migration instructions 9 years ago
Nathan Kinder f02609813e Add previously published security notes 9 years ago
Nathan Kinder e5125edcbd Initial commit 9 years ago