Red Hat Product Errata RHSA-2019:0580 - Security Advisory
Issued:
2019-03-18
Updated:
2019-03-18

RHSA-2019:0580 - Security Advisory

Synopsis

Low: openstack-ceilometer security and bug fix update

Type/Severity

Security Advisory: Low

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for openstack-ceilometer is now available for Red Hat OpenStack Platform 14.0 (Rocky).

Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

OpenStack Telemetry (ceilometer) collects customer usage data for metering purposes. Telemetry implements bus listener, push, and polling agents for data collection. This data is stored in a database and presented via the REST API. In addition, Telemetry's extensible design means it can be optionally extended to gather customized data sets.

The following packages have been upgraded to a later upstream version: openstack-ceilometer (11.0.2). (BZ#1677462)

Security Fix(es):

  • openstack-ceilometer: ceilometer-agent prints sensitive data from config files through log files (CVE-2019-3830)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat OpenStack for IBM Power 14 ppc64le
  • Red Hat OpenStack 14 x86_64

Fixes

  • BZ - 1671261 - ceilometer writing snmp credentials to log file
  • BZ - 1677389 - CVE-2019-3830 openstack-ceilometer: ceilometer-agent prints sensitive data from config files through log files

Red Hat OpenStack for IBM Power 14

SRPM
openstack-ceilometer-11.0.2-0.20190117115822.50f268f.el7ost.src.rpm SHA-256: 95c915ce7198874ab9faf6bdaa684484a131af8d35acb85022cc200e159f0811
ppc64le
openstack-ceilometer-central-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 9607c8c0497ab1847ad2623e6fa230381300d16ed76a877ee6f56f08455289bb
openstack-ceilometer-central-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 9607c8c0497ab1847ad2623e6fa230381300d16ed76a877ee6f56f08455289bb
openstack-ceilometer-common-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 42c72631f71d988b0678b9323231787606ccfceaebe728ab517b001d2d4c997c
openstack-ceilometer-common-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 42c72631f71d988b0678b9323231787606ccfceaebe728ab517b001d2d4c997c
openstack-ceilometer-compute-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: c762009199027d636437dc188adc7c954e2cc7071f53a0880eadb9d923fc3328
openstack-ceilometer-compute-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: c762009199027d636437dc188adc7c954e2cc7071f53a0880eadb9d923fc3328
openstack-ceilometer-ipmi-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 0864b486dca246f46a2390940db14aeba5535fffe47d9983bcbbfd8ce199063e
openstack-ceilometer-ipmi-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 0864b486dca246f46a2390940db14aeba5535fffe47d9983bcbbfd8ce199063e
openstack-ceilometer-notification-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: b80bd38debac8d624544e673020310d2bc97573d39b5115262bbdb34a712db11
openstack-ceilometer-notification-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: b80bd38debac8d624544e673020310d2bc97573d39b5115262bbdb34a712db11
openstack-ceilometer-polling-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: fcb3efd74998f3295da4b40db2a94180a2ef16fae1498ee5d9ce0f0ee2abde69
openstack-ceilometer-polling-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: fcb3efd74998f3295da4b40db2a94180a2ef16fae1498ee5d9ce0f0ee2abde69
python-ceilometer-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 1b87fe7b8819bdce8daa1ca39b62e1c7d5822baa0babb89cca7c6e31963dd138
python-ceilometer-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 1b87fe7b8819bdce8daa1ca39b62e1c7d5822baa0babb89cca7c6e31963dd138

Red Hat OpenStack 14

SRPM
openstack-ceilometer-11.0.2-0.20190117115822.50f268f.el7ost.src.rpm SHA-256: 95c915ce7198874ab9faf6bdaa684484a131af8d35acb85022cc200e159f0811
x86_64
openstack-ceilometer-central-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 9607c8c0497ab1847ad2623e6fa230381300d16ed76a877ee6f56f08455289bb
openstack-ceilometer-common-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 42c72631f71d988b0678b9323231787606ccfceaebe728ab517b001d2d4c997c
openstack-ceilometer-compute-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: c762009199027d636437dc188adc7c954e2cc7071f53a0880eadb9d923fc3328
openstack-ceilometer-ipmi-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 0864b486dca246f46a2390940db14aeba5535fffe47d9983bcbbfd8ce199063e
openstack-ceilometer-notification-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: b80bd38debac8d624544e673020310d2bc97573d39b5115262bbdb34a712db11
openstack-ceilometer-polling-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: fcb3efd74998f3295da4b40db2a94180a2ef16fae1498ee5d9ce0f0ee2abde69
python-ceilometer-11.0.2-0.20190117115822.50f268f.el7ost.noarch.rpm SHA-256: 1b87fe7b8819bdce8daa1ca39b62e1c7d5822baa0babb89cca7c6e31963dd138

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.