openstack-attic/openstack-security-notes
Code Issues Proposed changes

Commit Graph

  • 428fd1bf7e OpenDev Migration Patch master OpenDev Sysadmins 2019-04-19 19:26:10 +00:00
  • 39c8043bdf Nova networking IPtables rules not reinstated with soft reboot Doug Chivers 2014-07-21 12:43:01 +01:00
  • abb944a64d Remove wiki template Nathan Kinder 2014-07-25 14:33:51 -07:00
  • bf53cbc80a Corrected a simple typo in OSSN-0021 Nathan Kinder 2014-07-25 13:58:57 -07:00
  • 9aaa0e77ad OSSN-0021 - Keystone trusts on compromised account Stanislaw Pitucha 2014-07-16 14:31:04 +01:00
  • 78e62638d7 Merge "Adding OSSN-0019 - SSH Pool using auto-add policy." Jenkins 2014-06-30 16:28:57 +00:00
  • e90df8f178 Adding OSSN-0019 - SSH Pool using auto-add policy. Tim Kelsey 2014-06-18 16:36:35 +01:00
  • f17494ab48 Merge "Add OSSN-0018 - Dangerous network configuration" Jenkins 2014-06-24 15:02:37 +00:00
  • e34b5c292b Adding OSSN-0017 - Session-fixation vulnerability in Horizon when using the default signed cookie sessions tmcpeak 2014-06-11 09:22:04 -07:00
  • c6d62a198a Add OSSN-0018 - Dangerous network configuration Stanislaw Pitucha 2014-06-13 20:58:33 +01:00
  • 5f5202470c Correct workaround in OSSN-0013 Nathan Kinder 2014-06-05 15:43:53 -07:00
  • 29305c9fe5 Merge "Cinder secure wipe misconfiguration will result in no wipe, on Grizzly." Jenkins 2014-06-02 18:29:43 +00:00
  • 4f3db51563 Cinder secure wipe misconfiguration will result in no wipe, on Grizzly. Doug Chivers 2014-05-30 17:58:58 +01:00
  • a4b7274e94 Merge "Add OSSN-0014 - Cinder drivers set insecure file permissions" Jenkins 2014-05-31 00:32:37 +00:00
  • d342849a4a Add OSSN-0015 - Glance allows non-admin users to create public images Nathan Kinder 2014-05-29 10:49:17 -07:00
  • fd714a9be8 Add OSSN-0014 - Cinder drivers set insecure file permissions Malini Bhandaru 2014-05-05 19:37:51 -07:00
  • 407fb8f198 Adds OSSN-0013 Robert Clark 2014-05-02 09:41:26 +01:00
  • 3e3088b00d Merge "Add OSSN-0010 - Sample Keystone v3 policy exposes privilege escalation vulnerability" Jenkins 2014-04-17 18:42:56 +00:00
  • 1c3455cc2b Add OSSN-0010 - Sample Keystone v3 policy exposes privilege escalation vulnerability Jamie Finnigan 2014-04-04 11:31:02 -07:00
  • c338a1fccc Correct typo in OSSN-0012 title Nathan Kinder 2014-04-10 00:13:58 -07:00
  • 786d188b5d Add OSSN-0012 - OpenSSL Heartbleed vulnerability Nathan Kinder 2014-04-09 15:56:26 -07:00
  • f291579bfb Add OSSN-0011 - Heat templates with invalid references allows unintended network access Nathan Kinder 2014-04-04 12:48:37 -07:00
  • 66136e3c69 Merge "Add gitreview file" Jenkins 2014-04-02 17:02:16 +00:00
  • 5380798f05 Add OSSN-0009 - Potential token revocation abuse via group membership Nathan Kinder 2014-04-01 18:44:25 -07:00
  • af9cfa77ce Add gitreview file Nathan Kinder 2014-04-01 16:53:46 -07:00
  • 732ab7bec2 Add OSSN-0008 - DoS attack on noVNC/SPICE console due to lack of limiting Nathan Kinder 2014-03-09 09:58:57 -07:00
  • ce768e0d54 Modified templates to wrap lines at 72 characters Nathan Kinder 2014-03-06 18:51:31 -08:00
  • 02a381f826 Add OSSN-0007 - unsecure libvirt live migration instructions Nathan Kinder 2014-03-06 14:59:19 -08:00
  • f02609813e Add previously published security notes Nathan Kinder 2014-02-12 21:35:18 -08:00
  • e5125edcbd Initial commit Nathan Kinder 2014-02-12 19:41:01 -08:00