Candidate: CVE-2015-7514
PublicDate: 2017-06-07 14:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7514
 http://www.openwall.com/lists/oss-security/2015/12/03/5
Description:
 OpenStack Ironic 4.2.0 through 4.2.1 does not "clean" the disk after use,
 which allows remote authenticated users to obtain sensitive information.
Ubuntu-Description:
Notes:
 tyhicks> Affects "Ironic: >= 4.2.0, <= 4.2.1"
Bugs:
Priority: medium
Discovered-by: Brad Morgan
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N [6.5 MEDIUM]

Patches_ironic:
upstream_ironic: released (1:4.2.2-1)
precise_ironic: DNE
precise/esm_ironic: DNE
trusty_ironic: not-affected
trusty/esm_ironic: DNE (trusty was not-affected)
vivid_ironic: not-affected (2015.1.0-0ubuntu1)
vivid/stable-phone-overlay_ironic: DNE
vivid/ubuntu-core_ironic: DNE
wily_ironic: ignored (reached end-of-life)
xenial_ironic: not-affected (1:5.1.2-0ubuntu1)
yakkety_ironic: ignored (reached end-of-life)
zesty_ironic: ignored (reached end-of-life)
artful_ironic: ignored (reached end-of-life)
bionic_ironic: not-affected (1:5.1.2-0ubuntu1)
cosmic_ironic: not-affected (1:5.1.2-0ubuntu1)
devel_ironic: not-affected (1:5.1.2-0ubuntu1)