** Summary changed:
- Heat: template source URL allows network port scan (CVE-2016-9185)
+ [OSSA 2016-013] Heat: template source URL allows network port scan
(CVE-2016-9185)
** Changed in: ossa
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Dashboard (Horizon).
https://bugs.launchpad.net/bugs/1606500
Title:
[OSSA 2016-013] Heat: template source URL allows network port scan
(CVE-2016-9185)
Status in heat:
Fix Released
Status in OpenStack Dashboard (Horizon):
Invalid
Status in OpenStack Security Advisory:
Fix Released
Bug description:
Launching a new Heat stack and giving the template from an URL like
http://localhost:22
Results in an error message like:
ERROR: Could not retrieve template: Failed to retrieve template:
('Connection aborted.', BadStatusLine('SSH-2.0-OpenSSH_6.6.1\r\n',))
This is a security issue as it allows users to scan the network for
listening ports.
heat CLI does not allow that:
heat stack-create -u http://localhost:22 test
[Errno 104] Connection reset by peer
To manage notifications about this bug go to:
https://bugs.launchpad.net/heat/+bug/1606500/+subscriptions
--
Mailing list: https://launchpad.net/~yahoo-eng-team
Post to : [email protected]
Unsubscribe : https://launchpad.net/~yahoo-eng-team
More help : https://help.launchpad.net/ListHelp
