This bug was fixed in the package python-os-brick - 3.0.1-0ubuntu1.2
---------------
python-os-brick (3.0.1-0ubuntu1.2) focal-security; urgency=medium
* d/gbp.conf: Create stable/ussuri branch.
* SECURITY UPDATE: Dell EMC ScaleIO/VxFlex OS Backend Credentials Exposure
(LP: #1823200)
- debian/patches/CVE-2020-10755.patch: Remove VxFlex OS credentials
from connection_properties. Passwords are now stored in separate file
and are retrieved during each attach/detach operation.
- CVE-2020-10755
-- Corey Bryant <[email protected]> Mon, 08 Jun 2020 09:25:57
-0400
** Changed in: python-os-brick (Ubuntu Focal)
Status: Triaged => Fix Released
** Changed in: python-os-brick (Ubuntu Bionic)
Status: Triaged => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1823200
Title:
Improper handling of ScaleIO backend credentials
To manage notifications about this bug go to:
https://bugs.launchpad.net/cinder/+bug/1823200/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
