OpenStack Security Advice, guiding users around common insecure configurations and vulnerabilities in 3rd party libraries and applications often used with OpenStack.
OpenStack Security Notes exist to guide users and implementers of OpenStack through various security 'pain-points'. Security Notes do not directly address vulnerabilities in OpenStack. OSNs provide guidance to ensure secure use of OpenStack and will often provide work arounds or advice for 3rd party libraries and services used in conjunction with OpenStack.
This project is maintained by the OpenStack Security Group: https:/
Project information
- Licence:
- Creative Commons - No Rights Reserved
View full history Series and milestones
trunk series is the current focus of development.
All bugs Latest bugs reported
-
Bug #2048114: Unsafe Environment Handling in MuranoPL
Reported -
Bug #2048785: Trunk parent port (tpt port) vlan_mode is wrong in ovs
Reported -
Bug #2049762: Service tokens seems to be incorrectly implemented in kolla-ansible
Reported -
Bug #1838473: non-IP ethertypes are permitted with iptables_hybrid firewall driver
Reported -
Bug #2004555: [OSSA-2023-003] Unauthorized volume access through deleted volume attachments (CVE-2023-2088)
Reported
More contributors Top contributors
- Jeremy Stanley 60 points
- Franciszek Przewoźny 10 points