automation-and-virtualized-infrastructure-manager
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
automation-and-virtualized-infrastructure-manager [2015/10/21 12:55] Sona Sarmadi |
automation-and-virtualized-infrastructure-manager [2016/02/10 12:59] Sona Sarmadi |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ==== OpenStack ==== | ==== OpenStack ==== | ||
| - | * OpenStack security guide: http://docs.openstack.org/security-guide/ | + | * Main Wiki page: https://wiki.openstack.org/wiki/Main_Page |
| - | * http://docs.openstack.org/sec/ OpenStack Security wiki: https://wiki.openstack.org/wiki/Security | + | * Security Notes: https://wiki.openstack.org/wiki/Security_Notes |
| - | * OpenStack Security info:https://security.openstack.org/ | + | * Security wiki: https://wiki.openstack.org/wiki/Security |
| + | * Security info:https://security.openstack.org/ | ||
| === OpenStack CVE list === | === OpenStack CVE list === | ||
| Line 10: | Line 11: | ||
| * https://www.cvedetails.com/vulnerability-list/vendor_id-11727/product_id-22395/Openstack-Horizon.html | * https://www.cvedetails.com/vulnerability-list/vendor_id-11727/product_id-22395/Openstack-Horizon.html | ||
| * https://www.cvedetails.com/vulnerability-list/vendor_id-11727/product_id-22720/Openstack-Keystone.html | * https://www.cvedetails.com/vulnerability-list/vendor_id-11727/product_id-22720/Openstack-Keystone.html | ||
| + | |||
| + | |||
| + | === CVEs fixed in Openstack=== | ||
| + | |||
| + | ^ CVE ^ Description ^ Fixed in Arno ^ Fixed in Brahmaputra| | ||
| + | | [[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7546|CVE-2015-7546]] | | | | | ||
| + | | [[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CCVE-2015-8234|CVE-2015-8234]] | | | | | ||
| + | | [[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8466|CVE-2015-8466]] | | | | | ||
| + | | [[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7713|CVE-2015-7713]] | | | | | ||
| + | | | | ||
| + | |||
| + | === Openstack Security Guide=== | ||
| + | |||
| + | * http://docs.openstack.org/security-guide | ||
| === Glance === | === Glance === | ||
| Line 24: | Line 39: | ||
| * Validation of uploaded signed images | * Validation of uploaded signed images | ||
| - | Deploying authentication will protect image integrity by verifying that an image has not been modified after the upload by the user. This feature improves the enterprise-ready posture of OpenStack. | + | Deploying authentication will protect image integrity by verifying that an image has not been modified after the upload by the user. This feature improves the enterprise-ready posture of OpenStack. For further info read [[http://specs.openstack.org/openstack/glance-specs/specs/liberty/image-signing-and-verification-support.html|here.]] |
| - | + | ||
| - | For further info read [[http://specs.openstack.org/openstack/glance-specs/specs/liberty/image-signing-and-verification-support.html|here.]] | + | |
automation-and-virtualized-infrastructure-manager.txt · Last modified: 2016/02/10 12:59 by Sona Sarmadi
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: Creative Commons Attribution 4.0 International License
