The cloud-init packages provide a set of init scripts for cloud instances.
Cloud instances need special scripts to run during initialization to
retrieve and install ssh keys and to let the user run various scripts.
A denial of service flaw was found in the way Python’s SSL module
implementation performed matching of certain certificate names. A remote
attacker able to obtain a valid certificate that contained multiple
wildcard characters could use this flaw to issue a request to validate such
a certificate, resulting in excessive consumption of CPU. (CVE-2013-2099)
This issue was discovered by Florian Weimer of Red Hat Product Security.
The cloud-init packages have been upgraded to upstream version 0.7.5, which
provides a number of bug fixes and enhancements over the previous version.
(BZ#1111709, BZ#1119334)
All cloud-init users are advised to upgrade to these updated packages,
which correct these issues and add these enhancements.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | src | python-backports | < 1.0-3.el6 | python-backports-1.0-3.el6.src.rpm |
RedHat | 6 | src | python-urllib3 | < 1.5-5.1.2.el6 | python-urllib3-1.5-5.1.2.el6.src.rpm |
RedHat | 6 | s390x | python-backports | < 1.0-3.el6 | python-backports-1.0-3.el6.s390x.rpm |
RedHat | 6 | x86_64 | cloud-init | < 0.7.5-1.el6 | cloud-init-0.7.5-1.el6.x86_64.rpm |
RedHat | 6 | noarch | python-jsonpatch | < 1.2-2.el6 | python-jsonpatch-1.2-2.el6.noarch.rpm |
RedHat | 6 | i686 | cloud-init | < 0.7.5-1.el6 | cloud-init-0.7.5-1.el6.i686.rpm |
RedHat | 6 | src | python-boto | < 2.25.0-2.el6 | python-boto-2.25.0-2.el6.src.rpm |
RedHat | 6 | src | cloud-init | < 0.7.5-1.el6 | cloud-init-0.7.5-1.el6.src.rpm |
RedHat | 6 | ppc64 | python-backports | < 1.0-3.el6 | python-backports-1.0-3.el6.ppc64.rpm |
RedHat | 6 | noarch | python-six | < 1.6.1-1.el6 | python-six-1.6.1-1.el6.noarch.rpm |