Password change doesn't result in Karaf clearing cache

2022-05-1700:12:25

Google

osv.dev

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.9%

JSON

OpenDaylight Karaf 0.6.1-Carbon fails to clear the cache after a password change, allowing the old password to be used until the Karaf cache is manually cleared (e.g. via restart).

CPENameOperatorVersion
org.opendaylight.integration:distribution-karafeq0.3.0-Lithium
org.opendaylight.integration:distribution-karafeq0.2.2-Helium-SR2
org.opendaylight.integration:distribution-karafeq0.3.3-Lithium-SR3
org.opendaylight.integration:distribution-karafeq0.5.3-Boron-SR3
org.opendaylight.integration:distribution-karafeq0.3.1-Lithium-SR1
org.opendaylight.integration:distribution-karafeq0.2.0-Helium
org.opendaylight.integration:distribution-karafeq0.6.2-Carbon
org.opendaylight.integration:distribution-karafeq0.3.2-Lithium-SR2
org.opendaylight.integration:distribution-karafeq0.4.1-Beryllium-SR1
org.opendaylight.integration:distribution-karafeq0.4.4-Beryllium-SR4

Name	Operator	Version
org.opendaylight.integration:distribution-karaf	eq	0.3.0-Lithium
org.opendaylight.integration:distribution-karaf	eq	0.2.2-Helium-SR2
org.opendaylight.integration:distribution-karaf	eq	0.3.3-Lithium-SR3
org.opendaylight.integration:distribution-karaf	eq	0.5.3-Boron-SR3
org.opendaylight.integration:distribution-karaf	eq	0.3.1-Lithium-SR1
org.opendaylight.integration:distribution-karaf	eq	0.2.0-Helium
org.opendaylight.integration:distribution-karaf	eq	0.6.2-Carbon
org.opendaylight.integration:distribution-karaf	eq	0.3.2-Lithium-SR2
org.opendaylight.integration:distribution-karaf	eq	0.4.1-Beryllium-SR1
org.opendaylight.integration:distribution-karaf	eq	0.4.4-Beryllium-SR4