Candidate: CVE-2014-7231
PublicDate: 2014-10-08 19:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7231
 http://xforce.iss.net/xforce/xfdb/96726
 http://seclists.org/oss-sec/2014/q3/853
Description:
 The strutils.mask_password function in the OpenStack Oslo utility library,
 Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not
 properly mask passwords when logging commands, which allows local users to
 obtain passwords by reading the log.
Ubuntu-Description:
Notes:
Bugs:
 https://launchpad.net/bugs/1345233
Priority: medium
Discovered-by: Amrith Kumar
Assigned-to:
CVSS: 

Patches_python-oslo.utils:
 upstream: https://review.openstack.org/#/c/114614/ (master)
upstream_python-oslo.utils: released (0.2.0)
lucid_python-oslo.utils: DNE
precise_python-oslo.utils: DNE
trusty_python-oslo.utils: DNE
trusty/esm_python-oslo.utils: DNE
devel_python-oslo.utils: not-affected (1.0.0-0ubuntu1)