{"id":"PYSEC-2019-193","details":"In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are readable by all users. Sensitive information such as private keys can appear in these log files allowing for information exposure.","aliases":["CVE-2018-16856","GHSA-qcj3-h27m-mp9x"],"modified":"2024-04-29T11:41:35.368060Z","published":"2019-03-26T18:29:00Z","references":[{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16856"}],"affected":[{"package":{"name":"octavia","ecosystem":"PyPI","purl":"pkg:pypi/octavia"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"3.0.0"},{"fixed":"3.0.2"},{"introduced":"0"},{"fixed":"2.0.3"}]}],"versions":["0.10.0","0.5.2","0.8.0","0.8.1","0.9.0","0.9.1","0.9.2","1.0.0","1.0.0.0b1","1.0.0.0b2","1.0.0.0b3","1.0.0.0rc1","1.0.0.0rc2","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","2.0.0","2.0.0.0b1","2.0.0.0b2","2.0.0.0b3","2.0.0.0rc1","2.0.0.0rc2","2.0.1","2.0.2","3.0.0","3.0.1"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/octavia/PYSEC-2019-193.yaml"}}],"schema_version":"1.7.3"}