USN-6073-5: Nova regression

Read Time:28 Second

USN-6073-3 fixed a vulnerability in Nova. The update introduced a
regression causing Nova to be unable to detach volumes from instances. This
update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

Jan Wasilewski and Gorka Eguileor discovered that Nova incorrectly
handled deleted volume attachments. An authenticated user or attacker could
possibly use this issue to gain access to sensitive information.

This update may require configuration changes to be completely effective,
please see the upstream advisory for more information:

https://security.openstack.org/ossa/OSSA-2023-003.html

CISA Launches Playbook to Boost AI Cybersecurity Collaboration

Multi-Cloud Adoption Surges Amid Rising Security Concerns

Chinese PlugX Malware Deleted in Global Law Enforcement Operation

Illicit Crypto-Inflows Set to Top $51bn in a Year

Phishing False Alarm

Fortinet Confirms Critical Zero-Day Vulnerability in Firewalls

Secureworks Exposes North Korean Links to Fraudulent Crowdfunding

Microsoft Patches Eight Zero-Days to Start the Year

Microsoft: Happy 2025. Here’s 161 Security Updates

vaultwarden-1.32.7-2.el9

USN-7173-3: Linux kernel (Raspberry Pi) vulnerabilities

Multiple Vulnerabilities in Rsync Could Allow for Remote Code Execution

USN-7204-1: NeoMutt vulnerabilities

pam-u2f-1.3.1-1.el9

pam-u2f-1.3.1-1.fc40