Candidate: CVE-2015-0271
PublicDate: 2015-03-10 14:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0271
 https://rhn.redhat.com/errata/RHSA-2015-0645.html
Description:
 The log-viewing function in the Red Hat redhat-access-plugin before 6.0.3
 for OpenStack Dashboard (horizon) allows remote attackers to read arbitrary
 files via a crafted path.
Ubuntu-Description:
Notes:
 tyhicks> According to the RHSA, this issue only affects Red Hat Support
  plug-in (redhat-access-plugin). Horizon itself is not affected.
Bugs:
Priority: medium
Discovered-by: Sara Perez Merino
Assigned-to:
CVSS: 

Patches_horizon:
upstream_horizon: not-affected (Red Hat support plugin only)
lucid_horizon: DNE
precise_horizon: not-affected
trusty_horizon: not-affected
trusty/esm_horizon: DNE (trusty was not-affected)
utopic_horizon: not-affected
devel_horizon: not-affected