Source: murano Version: 1:2.0.0-1 Severity: grave Tags: security upstream Justification: user security hole
Hi, the following vulnerability was published for murano. CVE-2016-4972[0]: RCE vulnerability in Openstack Murano using insecure YAML tags If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2016-4972 [1] http://seclists.org/oss-sec/2016/q2/593 Regards, Salvatore
