Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-2084 (GCVE-0-2022-2084)
Vulnerability from cvelistv5
Published
2023-04-19 21:47
Modified
2025-02-05 14:42
Severity ?
VLAI Severity ?
EPSS score ?
CWE
Summary
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Canonical Ltd. | cloud-init |
Version: 0 ≤ |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T00:24:44.266Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"patch",
"x_transferred"
],
"url": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c"
},
{
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://ubuntu.com/security/notices/USN-5496-1"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2022-2084",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-05T14:41:29.870718Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "CWE-532 Insertion of Sensitive Information into Log File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-05T14:42:29.207Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://github.com/canonical/cloud-init/releases",
"packageName": "cloud-init",
"platforms": [
"Linux"
],
"product": "cloud-init",
"repo": "https://github.com/canonical/cloud-init/",
"vendor": "Canonical Ltd.",
"versions": [
{
"lessThan": "23.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Mike Stroyan"
}
],
"datePublic": "2022-06-29T22:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "CWE-532",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-04-19T21:47:41.034Z",
"orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc",
"shortName": "canonical"
},
"references": [
{
"tags": [
"patch"
],
"url": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c"
},
{
"tags": [
"vendor-advisory"
],
"url": "https://ubuntu.com/security/notices/USN-5496-1"
}
],
"title": "sensitive data exposure in cloud-init logs"
}
},
"cveMetadata": {
"assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc",
"assignerShortName": "canonical",
"cveId": "CVE-2022-2084",
"datePublished": "2023-04-19T21:47:41.034Z",
"dateReserved": "2022-06-14T20:41:08.563Z",
"dateUpdated": "2025-02-05T14:42:29.207Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2022-2084\",\"sourceIdentifier\":\"security@ubuntu.com\",\"published\":\"2023-04-19T22:15:10.207\",\"lastModified\":\"2025-02-05T15:15:15.360\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@ubuntu.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@ubuntu.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"22.3\",\"matchCriteriaId\":\"40F3D313-A853-4C22-B9C6-774118D80091\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"902B8056-9E37-443B-8905-8AA93E2447FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AAE4D2D0-CEEB-416F-8BC5-A7987DF56190\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"359012F1-2C63-415A-88B8-6726A87830DE\"}]}]}],\"references\":[{\"url\":\"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\",\"source\":\"security@ubuntu.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://ubuntu.com/security/notices/USN-5496-1\",\"source\":\"security@ubuntu.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://ubuntu.com/security/notices/USN-5496-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\", \"tags\": [\"patch\", \"x_transferred\"]}, {\"url\": \"https://ubuntu.com/security/notices/USN-5496-1\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T00:24:44.266Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-2084\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-05T14:41:29.870718Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-532\", \"description\": \"CWE-532 Insertion of Sensitive Information into Log File\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-05T14:42:23.119Z\"}}], \"cna\": {\"title\": \"sensitive data exposure in cloud-init logs\", \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Mike Stroyan\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"repo\": \"https://github.com/canonical/cloud-init/\", \"vendor\": \"Canonical Ltd.\", \"product\": \"cloud-init\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"23.0\", \"versionType\": \"semver\"}], \"platforms\": [\"Linux\"], \"packageName\": \"cloud-init\", \"collectionURL\": \"https://github.com/canonical/cloud-init/releases\"}], \"datePublic\": \"2022-06-29T22:00:00.000Z\", \"references\": [{\"url\": \"https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c\", \"tags\": [\"patch\"]}, {\"url\": \"https://ubuntu.com/security/notices/USN-5496-1\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-532\", \"description\": \"CWE-532\"}]}], \"providerMetadata\": {\"orgId\": \"cc1ad9ee-3454-478d-9317-d3e869d708bc\", \"shortName\": \"canonical\", \"dateUpdated\": \"2023-04-19T21:47:41.034Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-2084\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-05T14:42:29.207Z\", \"dateReserved\": \"2022-06-14T20:41:08.563Z\", \"assignerOrgId\": \"cc1ad9ee-3454-478d-9317-d3e869d708bc\", \"datePublished\": \"2023-04-19T21:47:41.034Z\", \"assignerShortName\": \"canonical\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
opensuse-su-2024:12738-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
cloud-init-23.1-1.1 on GA media
Notes
Title of the patch
cloud-init-23.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the cloud-init-23.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-12738
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cloud-init-23.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the cloud-init-23.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12738",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12738-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2084 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2084/"
}
],
"title": "cloud-init-23.1-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12738-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-1.1.aarch64",
"product": {
"name": "cloud-init-23.1-1.1.aarch64",
"product_id": "cloud-init-23.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-1.1.aarch64",
"product": {
"name": "cloud-init-config-suse-23.1-1.1.aarch64",
"product_id": "cloud-init-config-suse-23.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-1.1.aarch64",
"product": {
"name": "cloud-init-doc-23.1-1.1.aarch64",
"product_id": "cloud-init-doc-23.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-1.1.ppc64le",
"product": {
"name": "cloud-init-23.1-1.1.ppc64le",
"product_id": "cloud-init-23.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-1.1.ppc64le",
"product": {
"name": "cloud-init-config-suse-23.1-1.1.ppc64le",
"product_id": "cloud-init-config-suse-23.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-1.1.ppc64le",
"product": {
"name": "cloud-init-doc-23.1-1.1.ppc64le",
"product_id": "cloud-init-doc-23.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-1.1.s390x",
"product": {
"name": "cloud-init-23.1-1.1.s390x",
"product_id": "cloud-init-23.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-1.1.s390x",
"product": {
"name": "cloud-init-config-suse-23.1-1.1.s390x",
"product_id": "cloud-init-config-suse-23.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-1.1.s390x",
"product": {
"name": "cloud-init-doc-23.1-1.1.s390x",
"product_id": "cloud-init-doc-23.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-1.1.x86_64",
"product": {
"name": "cloud-init-23.1-1.1.x86_64",
"product_id": "cloud-init-23.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-1.1.x86_64",
"product": {
"name": "cloud-init-config-suse-23.1-1.1.x86_64",
"product_id": "cloud-init-config-suse-23.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-1.1.x86_64",
"product": {
"name": "cloud-init-doc-23.1-1.1.x86_64",
"product_id": "cloud-init-doc-23.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64"
},
"product_reference": "cloud-init-23.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le"
},
"product_reference": "cloud-init-23.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x"
},
"product_reference": "cloud-init-23.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64"
},
"product_reference": "cloud-init-23.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64"
},
"product_reference": "cloud-init-doc-23.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le"
},
"product_reference": "cloud-init-doc-23.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x"
},
"product_reference": "cloud-init-doc-23.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64"
},
"product_reference": "cloud-init-doc-23.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-2084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2084"
}
],
"notes": [
{
"category": "general",
"text": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2084",
"url": "https://www.suse.com/security/cve/CVE-2022-2084"
},
{
"category": "external",
"summary": "SUSE Bug 1210652 for CVE-2022-2084",
"url": "https://bugzilla.suse.com/1210652"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cloud-init-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-23.1-1.1.x86_64",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-config-suse-23.1-1.1.x86_64",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.aarch64",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.ppc64le",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.s390x",
"openSUSE Tumbleweed:cloud-init-doc-23.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2022-2084"
}
]
}
gsd-2022-2084
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-2084",
"id": "GSD-2022-2084",
"references": [
"https://ubuntu.com/security/CVE-2022-2084",
"https://www.suse.com/security/cve/CVE-2022-2084.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-2084"
],
"details": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.",
"id": "GSD-2022-2084",
"modified": "2023-12-13T01:19:19.500688Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@ubuntu.com",
"ID": "CVE-2022-2084",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "cloud-init",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "0",
"version_value": "23.0"
}
]
}
}
]
},
"vendor_name": "Canonical Ltd."
}
]
}
},
"credits": [
{
"lang": "en",
"value": "Mike Stroyan"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-532",
"lang": "eng",
"value": "CWE-532"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c",
"refsource": "MISC",
"url": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c"
},
{
"name": "https://ubuntu.com/security/notices/USN-5496-1",
"refsource": "MISC",
"url": "https://ubuntu.com/security/notices/USN-5496-1"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "22.3",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@ubuntu.com",
"ID": "CVE-2022-2084"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c",
"refsource": "MISC",
"tags": [
"Patch"
],
"url": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c"
},
{
"name": "https://ubuntu.com/security/notices/USN-5496-1",
"refsource": "MISC",
"tags": [
"Broken Link"
],
"url": "https://ubuntu.com/security/notices/USN-5496-1"
}
]
}
},
"impact": {
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-05-01T17:39Z",
"publishedDate": "2023-04-19T22:15Z"
}
}
}
fkie_cve-2022-2084
Vulnerability from fkie_nvd
Published
2023-04-19 22:15
Modified
2025-02-05 15:15
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| security@ubuntu.com | https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c | Patch | |
| security@ubuntu.com | https://ubuntu.com/security/notices/USN-5496-1 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c | Patch | |
| af854a3a-2127-422b-91ae-364da2661108 | https://ubuntu.com/security/notices/USN-5496-1 | Broken Link |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| canonical | cloud-init | * | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 20.04 | |
| canonical | ubuntu_linux | 21.10 | |
| canonical | ubuntu_linux | 22.04 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:*",
"matchCriteriaId": "40F3D313-A853-4C22-B9C6-774118D80091",
"versionEndExcluding": "22.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "902B8056-9E37-443B-8905-8AA93E2447FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*",
"matchCriteriaId": "AAE4D2D0-CEEB-416F-8BC5-A7987DF56190",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "359012F1-2C63-415A-88B8-6726A87830DE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords."
}
],
"id": "CVE-2022-2084",
"lastModified": "2025-02-05T15:15:15.360",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "security@ubuntu.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2023-04-19T22:15:10.207",
"references": [
{
"source": "security@ubuntu.com",
"tags": [
"Patch"
],
"url": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c"
},
{
"source": "security@ubuntu.com",
"tags": [
"Broken Link"
],
"url": "https://ubuntu.com/security/notices/USN-5496-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "https://ubuntu.com/security/notices/USN-5496-1"
}
],
"sourceIdentifier": "security@ubuntu.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "security@ubuntu.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
suse-su-2023:2628-1
Vulnerability from csaf_suse
Published
2023-06-23 19:44
Modified
2023-06-23 19:44
Summary
Security update for cloud-init
Notes
Title of the patch
Security update for cloud-init
Description of the patch
This update for cloud-init fixes the following issues:
- CVE-2023-1786: Do not expose sensitive data gathered from the CSP. (bsc#1210277)
- CVE-2022-2084: Fixed a bug which caused logging schema failures can include password hashes. (bsc#1210652)
- Update to version 23.1
+ Support transactional-updates for SUSE based distros
+ Set ownership for new folders in Write Files Module
+ add OpenCloudOS and TencentOS support
+ lxd: Retry if the server isn't ready
+ test: switch pycloudlib source to pypi
+ test: Fix integration test deprecation message
+ Recognize opensuse-microos, dev tooling fixes
+ sources/azure: refactor imds handler into own module
+ docs: deprecation generation support
+ add function is_virtual to distro/FreeBSD
+ cc_ssh: support multiple hostcertificates
+ Fix minor schema validation regression and fixup typing
+ doc: Reword user data debug section
+ cli: schema also validate vendordata*.
+ ci: sort and add checks for cla signers file
+ Add 'ederst' as contributor
+ readme: add reference to packages dir
+ docs: update downstream package list
+ docs: add google search verification
+ docs: fix 404 render use default notfound_urls_prefix in RTD conf
+ Fix OpenStack datasource detection on bare metal
+ docs: add themed RTD 404 page and pointer to readthedocs-hosted
+ schema: fix gpt labels, use type string for GUID
+ cc_disk_setup: code cleanup
+ netplan: keep custom strict perms when 50-cloud-init.yaml exists
+ cloud-id: better handling of change in datasource files
+ Warn on empty network key
+ Fix Vultr cloud_interfaces usage
+ cc_puppet: Update puppet service name
+ docs: Clarify networking docs
+ lint: remove httpretty
+ cc_set_passwords: Prevent traceback when restarting ssh
+ tests: fix lp1912844
+ tests: Skip ansible test on bionic
+ Wait for NetworkManager
+ docs: minor polishing
+ CI: migrate integration-test to GH actions
+ Fix permission of SSH host keys
+ Fix default route rendering on v2 ipv6
+ doc: fix path in net_convert command
+ docs: update net_convert docs
+ doc: fix dead link
+ cc_set_hostname: ignore /var/lib/cloud/data/set-hostname if it's empty
+ distros/rhel.py: _read_hostname() missing strip on 'hostname'
+ integration tests: add IBM VPC support
+ machine-id: set to uninitialized to trigger regeneration on clones
+ sources/azure: retry on connection error when fetching metdata
+ Ensure ssh state accurately obtained
+ bddeb: drop dh-systemd dependency on newer deb-based releases
+ doc: fix `config formats` link in cloudsigma.rst
+ Fix wrong subp syntax in cc_set_passwords.py
+ docs: update the PR template link to readthedocs
+ ci: switch unittests to gh actions
+ Add mount_default_fields for PhotonOS.
+ sources/azure: minor refactor for metadata source detection logic
+ add 'CalvoM' as contributor
+ ci: doc to gh actions
+ lxd: handle 404 from missing devices route for LXD 4.0
+ docs: Diataxis overhaul
+ vultr: Fix issue regarding cache and region codes
+ cc_set_passwords: Move ssh status checking later
+ Improve Wireguard module idempotency
+ network/netplan: add gateways as on-link when necessary
+ tests: test_lxd assert features.networks.zones when present
+ Use btrfs enquque when available (#1926) [Robert Schweikert]
+ sources/azure: fix device driver matching for net config (#1914)
+ BSD: fix duplicate macs in Ifconfig parser
+ pycloudlib: add lunar support for integration tests
+ nocloud: add support for dmi variable expansion for seedfrom URL
+ tools: read-version drop extra call to git describe --long
+ doc: improve cc_write_files doc
+ read-version: When insufficient tags, use cloudinit.version.get_version
+ mounts: document weird prefix in schema
+ Ensure network ready before cloud-init service runs on RHEL
+ docs: add copy button to code blocks
+ netplan: define features.NETPLAN_CONFIG_ROOT_READ_ONLY flag
+ azure: fix support for systems without az command installed
+ Fix the distro.osfamily output problem in the openEuler system.
+ pycloudlib: bump commit dropping azure api smoke test
+ net: netplan config root read-only as wifi config can contain creds
+ autoinstall: clarify docs for users
+ sources/azure: encode health report as utf-8
+ Add back gateway4/6 deprecation to docs
+ networkd: Add support for multiple [Route] sections
+ doc: add qemu tutorial
+ lint: fix tip-flake8 and tip-mypy
+ Add support for setting uid when creating users on FreeBSD
+ Fix exception in BSD networking code-path
+ Append derivatives to is_rhel list in cloud.cfg.tmpl
+ FreeBSD init: use cloudinit_enable as only rcvar
+ feat: add support aliyun metadata security harden mode
+ docs: uprate analyze to performance page
+ test: fix lxd preseed managed network config
+ Add support for static IPv6 addresses for FreeBSD
+ Make 3.12 failures not fail the build
+ Docs: adding relative links
+ Fix setup.py to align with PEP 440 versioning replacing trailing
+ Add 'nkukard' as contributor
+ doc: add how to render new module doc
+ doc: improve module creation explanation
+ Add Support for IPv6 metadata to OpenStack
+ add xiaoge1001 to .github-cla-signers
+ network: Deprecate gateway{4,6} keys in network config v2
+ VMware: Move Guest Customization transport from OVF to VMware
+ doc: home page links added
+ net: skip duplicate mac check for netvsc nic and its VF
This update for python-responses fixes the following issues:
- update to 0.21.0:
* Add `threading.Lock()` to allow `responses` working with `threading` module.
* Add `urllib3` `Retry` mechanism. See #135
* Removed internal `_cookies_from_headers` function
* Now `add`, `upsert`, `replace` methods return registered response.
`remove` method returns list of removed responses.
* Added null value support in `urlencoded_params_matcher` via `allow_blank` keyword argument
* Added strict version of decorator. Now you can apply `@responses.activate(assert_all_requests_are_fired=True)`
to your function to validate that all requests were executed in the wrapped function. See #183
Patchnames
SUSE-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP1-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP2-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP3-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP4-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP5-2023-2628,openSUSE-SLE-15.4-2023-2628,openSUSE-SLE-15.5-2023-2628
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cloud-init",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cloud-init fixes the following issues:\n\n- CVE-2023-1786: Do not expose sensitive data gathered from the CSP. (bsc#1210277)\n- CVE-2022-2084: Fixed a bug which caused logging schema failures can include password hashes. (bsc#1210652)\n \n- Update to version 23.1\n\n + Support transactional-updates for SUSE based distros\n + Set ownership for new folders in Write Files Module\n + add OpenCloudOS and TencentOS support\n + lxd: Retry if the server isn\u0027t ready \n + test: switch pycloudlib source to pypi \n + test: Fix integration test deprecation message \n + Recognize opensuse-microos, dev tooling fixes \n + sources/azure: refactor imds handler into own module \n + docs: deprecation generation support \n + add function is_virtual to distro/FreeBSD\n + cc_ssh: support multiple hostcertificates \n + Fix minor schema validation regression and fixup typing \n + doc: Reword user data debug section \n + cli: schema also validate vendordata*.\n + ci: sort and add checks for cla signers file \n + Add \u0027ederst\u0027 as contributor\n + readme: add reference to packages dir \n + docs: update downstream package list \n + docs: add google search verification \n + docs: fix 404 render use default notfound_urls_prefix in RTD conf\n + Fix OpenStack datasource detection on bare metal\n + docs: add themed RTD 404 page and pointer to readthedocs-hosted \n + schema: fix gpt labels, use type string for GUID \n + cc_disk_setup: code cleanup \n + netplan: keep custom strict perms when 50-cloud-init.yaml exists\n + cloud-id: better handling of change in datasource files\n + Warn on empty network key \n + Fix Vultr cloud_interfaces usage \n + cc_puppet: Update puppet service name \n + docs: Clarify networking docs \n + lint: remove httpretty \n + cc_set_passwords: Prevent traceback when restarting ssh \n + tests: fix lp1912844 \n + tests: Skip ansible test on bionic \n + Wait for NetworkManager \n + docs: minor polishing \n + CI: migrate integration-test to GH actions \n + Fix permission of SSH host keys \n + Fix default route rendering on v2 ipv6\n + doc: fix path in net_convert command \n + docs: update net_convert docs\n + doc: fix dead link\n + cc_set_hostname: ignore /var/lib/cloud/data/set-hostname if it\u0027s empty\n + distros/rhel.py: _read_hostname() missing strip on \u0027hostname\u0027\n + integration tests: add IBM VPC support \n + machine-id: set to uninitialized to trigger regeneration on clones\n + sources/azure: retry on connection error when fetching metdata \n + Ensure ssh state accurately obtained \n + bddeb: drop dh-systemd dependency on newer deb-based releases \n + doc: fix `config formats` link in cloudsigma.rst \n + Fix wrong subp syntax in cc_set_passwords.py \n + docs: update the PR template link to readthedocs \n + ci: switch unittests to gh actions\n + Add mount_default_fields for PhotonOS. \n + sources/azure: minor refactor for metadata source detection logic\n + add \u0027CalvoM\u0027 as contributor \n + ci: doc to gh actions \n + lxd: handle 404 from missing devices route for LXD 4.0 \n + docs: Diataxis overhaul \n + vultr: Fix issue regarding cache and region codes \n + cc_set_passwords: Move ssh status checking later \n + Improve Wireguard module idempotency \n + network/netplan: add gateways as on-link when necessary \n + tests: test_lxd assert features.networks.zones when present \n + Use btrfs enquque when available (#1926) [Robert Schweikert]\n + sources/azure: fix device driver matching for net config (#1914)\n + BSD: fix duplicate macs in Ifconfig parser \n + pycloudlib: add lunar support for integration tests \n + nocloud: add support for dmi variable expansion for seedfrom URL\n + tools: read-version drop extra call to git describe --long\n + doc: improve cc_write_files doc\n + read-version: When insufficient tags, use cloudinit.version.get_version\n + mounts: document weird prefix in schema \n + Ensure network ready before cloud-init service runs on RHEL\n + docs: add copy button to code blocks \n + netplan: define features.NETPLAN_CONFIG_ROOT_READ_ONLY flag\n + azure: fix support for systems without az command installed \n + Fix the distro.osfamily output problem in the openEuler system. \n + pycloudlib: bump commit dropping azure api smoke test\n + net: netplan config root read-only as wifi config can contain creds\n + autoinstall: clarify docs for users\n + sources/azure: encode health report as utf-8 \n + Add back gateway4/6 deprecation to docs \n + networkd: Add support for multiple [Route] sections \n + doc: add qemu tutorial \n + lint: fix tip-flake8 and tip-mypy \n + Add support for setting uid when creating users on FreeBSD \n + Fix exception in BSD networking code-path \n + Append derivatives to is_rhel list in cloud.cfg.tmpl \n + FreeBSD init: use cloudinit_enable as only rcvar \n + feat: add support aliyun metadata security harden mode \n + docs: uprate analyze to performance page\n + test: fix lxd preseed managed network config \n + Add support for static IPv6 addresses for FreeBSD \n + Make 3.12 failures not fail the build \n + Docs: adding relative links \n + Fix setup.py to align with PEP 440 versioning replacing trailing\n + Add \u0027nkukard\u0027 as contributor \n + doc: add how to render new module doc \n + doc: improve module creation explanation \n + Add Support for IPv6 metadata to OpenStack \n + add xiaoge1001 to .github-cla-signers\n + network: Deprecate gateway{4,6} keys in network config v2\n + VMware: Move Guest Customization transport from OVF to VMware\n + doc: home page links added\n + net: skip duplicate mac check for netvsc nic and its VF\n\nThis update for python-responses fixes the following issues:\n \n- update to 0.21.0:\n * Add `threading.Lock()` to allow `responses` working with `threading` module.\n * Add `urllib3` `Retry` mechanism. See #135\n * Removed internal `_cookies_from_headers` function\n * Now `add`, `upsert`, `replace` methods return registered response.\n `remove` method returns list of removed responses.\n * Added null value support in `urlencoded_params_matcher` via `allow_blank` keyword argument\n * Added strict version of decorator. Now you can apply `@responses.activate(assert_all_requests_are_fired=True)`\n to your function to validate that all requests were executed in the wrapped function. See #183\n\n \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP1-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP2-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP3-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP4-2023-2628,SUSE-SLE-Module-Public-Cloud-15-SP5-2023-2628,openSUSE-SLE-15.4-2023-2628,openSUSE-SLE-15.5-2023-2628",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_2628-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:2628-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20232628-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:2628-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-June/015295.html"
},
{
"category": "self",
"summary": "SUSE Bug 1171511",
"url": "https://bugzilla.suse.com/1171511"
},
{
"category": "self",
"summary": "SUSE Bug 1203393",
"url": "https://bugzilla.suse.com/1203393"
},
{
"category": "self",
"summary": "SUSE Bug 1210277",
"url": "https://bugzilla.suse.com/1210277"
},
{
"category": "self",
"summary": "SUSE Bug 1210652",
"url": "https://bugzilla.suse.com/1210652"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2084 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-1786 page",
"url": "https://www.suse.com/security/cve/CVE-2023-1786/"
}
],
"title": "Security update for cloud-init",
"tracking": {
"current_release_date": "2023-06-23T19:44:04Z",
"generator": {
"date": "2023-06-23T19:44:04Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:2628-1",
"initial_release_date": "2023-06-23T19:44:04Z",
"revision_history": [
{
"date": "2023-06-23T19:44:04Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-150100.8.63.5.aarch64",
"product": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64",
"product_id": "cloud-init-23.1-150100.8.63.5.aarch64"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"product": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"product_id": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-150100.8.63.5.aarch64",
"product": {
"name": "cloud-init-doc-23.1-150100.8.63.5.aarch64",
"product_id": "cloud-init-doc-23.1-150100.8.63.5.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-150100.8.63.5.i586",
"product": {
"name": "cloud-init-23.1-150100.8.63.5.i586",
"product_id": "cloud-init-23.1-150100.8.63.5.i586"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-150100.8.63.5.i586",
"product": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.i586",
"product_id": "cloud-init-config-suse-23.1-150100.8.63.5.i586"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-150100.8.63.5.i586",
"product": {
"name": "cloud-init-doc-23.1-150100.8.63.5.i586",
"product_id": "cloud-init-doc-23.1-150100.8.63.5.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "python2-cookies-2.2.1-150100.3.5.1.noarch",
"product": {
"name": "python2-cookies-2.2.1-150100.3.5.1.noarch",
"product_id": "python2-cookies-2.2.1-150100.3.5.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-cookies-2.2.1-150100.3.5.1.noarch",
"product": {
"name": "python3-cookies-2.2.1-150100.3.5.1.noarch",
"product_id": "python3-cookies-2.2.1-150100.3.5.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-responses-0.21.0-150100.3.3.1.noarch",
"product": {
"name": "python3-responses-0.21.0-150100.3.3.1.noarch",
"product_id": "python3-responses-0.21.0-150100.3.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-150100.8.63.5.ppc64le",
"product": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le",
"product_id": "cloud-init-23.1-150100.8.63.5.ppc64le"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"product": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"product_id": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"product": {
"name": "cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"product_id": "cloud-init-doc-23.1-150100.8.63.5.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-150100.8.63.5.s390x",
"product": {
"name": "cloud-init-23.1-150100.8.63.5.s390x",
"product_id": "cloud-init-23.1-150100.8.63.5.s390x"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"product": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"product_id": "cloud-init-config-suse-23.1-150100.8.63.5.s390x"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-150100.8.63.5.s390x",
"product": {
"name": "cloud-init-doc-23.1-150100.8.63.5.s390x",
"product_id": "cloud-init-doc-23.1-150100.8.63.5.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cloud-init-23.1-150100.8.63.5.x86_64",
"product": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64",
"product_id": "cloud-init-23.1-150100.8.63.5.x86_64"
}
},
{
"category": "product_version",
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"product": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"product_id": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
}
},
{
"category": "product_version",
"name": "cloud-init-doc-23.1-150100.8.63.5.x86_64",
"product": {
"name": "cloud-init-doc-23.1-150100.8.63.5.x86_64",
"product_id": "cloud-init-doc-23.1-150100.8.63.5.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cloud-init-doc-23.1-150100.8.63.5.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64"
},
"product_reference": "cloud-init-doc-23.1-150100.8.63.5.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-2084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2084"
}
],
"notes": [
{
"category": "general",
"text": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2084",
"url": "https://www.suse.com/security/cve/CVE-2022-2084"
},
{
"category": "external",
"summary": "SUSE Bug 1210652 for CVE-2022-2084",
"url": "https://bugzilla.suse.com/1210652"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-06-23T19:44:04Z",
"details": "moderate"
}
],
"title": "CVE-2022-2084"
},
{
"cve": "CVE-2023-1786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-1786"
}
],
"notes": [
{
"category": "general",
"text": "Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-1786",
"url": "https://www.suse.com/security/cve/CVE-2023-1786"
},
{
"category": "external",
"summary": "SUSE Bug 1210277 for CVE-2023-1786",
"url": "https://bugzilla.suse.com/1210277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP1:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-23.1-150100.8.63.5.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.4:cloud-init-doc-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-config-suse-23.1-150100.8.63.5.x86_64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.aarch64",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.ppc64le",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.s390x",
"openSUSE Leap 15.5:cloud-init-doc-23.1-150100.8.63.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-06-23T19:44:04Z",
"details": "moderate"
}
],
"title": "CVE-2023-1786"
}
]
}
ghsa-w62x-qh57-5m94
Vulnerability from github
Published
2023-04-20 00:30
Modified
2024-04-04 03:36
Severity ?
VLAI Severity ?
Details
Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.
{
"affected": [],
"aliases": [
"CVE-2022-2084"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-04-19T22:15:10Z",
"severity": "MODERATE"
},
"details": "Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords.",
"id": "GHSA-w62x-qh57-5m94",
"modified": "2024-04-04T03:36:26Z",
"published": "2023-04-20T00:30:43Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2084"
},
{
"type": "WEB",
"url": "https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c"
},
{
"type": "WEB",
"url": "https://ubuntu.com/security/notices/USN-5496-1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…