Vulnerability	Vulnerable Version
H Improper Validation of Integrity Check Value ironic is an OpenStack Bare Metal Provisioning Affected versions of this package are vulnerable to Improper Validation of Integrity Check Value due missing validations of checksum files of supplied `image_source` URLs, before the raw format conversion. How to fix Improper Validation of Integrity Check Value? Upgrade `ironic` to version 21.4.4, 23.0.3, 24.1.3, 26.1.1 or higher.	[,21.4.4)[22.0.0,23.0.3)[23.1.0,24.1.3)[25.0.0,26.1.1)
H Information Exposure ironic is an OpenStack Bare Metal Provisioning Affected versions of this package are vulnerable to Information Exposure via the image processing in `qemu-img`. Note: This is exploitable only for authenticated users. How to fix Information Exposure? Upgrade `ironic` to version 21.4.3, 23.0.2, 24.1.2, 26.1.0 or higher.	[,21.4.3)[22.0.0,23.0.2)[23.1.0,24.1.2)[25.0.0,26.1.0)

Improper Validation of Integrity Check Value

ironic is an OpenStack Bare Metal Provisioning

Affected versions of this package are vulnerable to Improper Validation of Integrity Check Value due missing validations of checksum files of supplied image_source URLs, before the raw format conversion.

How to fix Improper Validation of Integrity Check Value?

Upgrade ironic to version 21.4.4, 23.0.3, 24.1.3, 26.1.1 or higher.

[,21.4.4)[22.0.0,23.0.3)[23.1.0,24.1.3)[25.0.0,26.1.1)

Information Exposure

ironic is an OpenStack Bare Metal Provisioning

Affected versions of this package are vulnerable to Information Exposure via the image processing in qemu-img. Note: This is exploitable only for authenticated users.

How to fix Information Exposure?

Upgrade ironic to version 21.4.3, 23.0.2, 24.1.2, 26.1.0 or higher.

[,21.4.3)[22.0.0,23.0.2)[23.1.0,24.1.2)[25.0.0,26.1.0)

Go back to all versions of this package