|
Bug #1039513: maas-import-pxe-files doesn't cryptographically verify what it downloads
|
 CVE-2013-1058 |
|
MAAS
|
Fix released, assigned to Julian Edwards
|
|
Bug #1158425: maas-import-pxe-files sources path-relative config
|
CVE-2013-1057 |
|
MAAS
|
Fix released, assigned to Julian Edwards
|
|
Bug #1212205: get_file_by_name does not check owner
|
CVE-2014-1426 |
|
MAAS
|
Fix released, assigned to Blake Rouse
|
|
Bug #1251336: MaaS API is vulnerable to XSS
|
CVE-2013-1070 |
|
MAAS
|
Fix released, assigned to Julian Edwards
|
|
Bug #1298772: MAAS API vulnerable to CSRF attack
|
CVE-2014-1427 |
|
MAAS
|
Fix released, assigned to Blake Rouse
|
|
Bug #1311433: REGRESSION: AttributeError: 'functools.partial' object has no attribute '__module__'
|
CVE-2014-0472 |
|
MAAS
|
Fix released, assigned to Jeroen T. Vermeulen
|
|
Bug #1379826: uuid.uuid1() is not suitable as an unguessable identifier/token
|
CVE-2014-1428 |
|
MAAS
|
Fix released, assigned to Blake Rouse
|
|
Bug #1399016: MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty
|
CVE-2014-8583 |
|
MAAS
|
Fix released (unassigned)
|
|
Bug #1428666: Probe-and-enlist for SeaMicro chassis writes password to the log
|
CVE-2015-1320 |
|
MAAS
|
Fix released, assigned to Mike Pontillo
|
|
Bug #2016908: udev fails to make prctl() syscall with apparmor=0 (as used by maas by default)
|
CVE-2023-1380
CVE-2023-2612
CVE-2023-30456
CVE-2023-31436
CVE-2023-32233 |
|
MAAS
|
Fix released, assigned to Alexsander de Souza
|
