CVE-2019-17134 (retired)

Priority
Description
Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0,
>=4.0.0 <4.1.0 allows anyone with access to the management network to
bypass client-certificate based authentication and retrieve information or
issue configuration commands via simple HTTP requests to the Agent on port
https/9443, because the cmd/agent.py gunicorn cert_reqs option is True but
is supposed to be ssl.CERT_REQUIRED.
Notes
Package
Upstream:released (4.0.0-6)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 19.04 (Disco Dingo):released (4.0.0-0ubuntu1.2)
Ubuntu 19.10 (Eoan):not-affected (5.0.0~b2~git2019073019.f80f25e8-0ubuntu1)
More Information

Updated: 2019-10-16 03:15:09 UTC (commit d5a77adc0692243c8830819b93e10d519bb68b0e)