cloud-init-20.3-10.el8.5

エラータID: AXSA:2021-2312:08

Release date: 
Wednesday, August 11, 2021 - 03:56
Subject: 
cloud-init-20.3-10.el8.5
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts.

Security Fix(es):

* cloud-init: randomly generated passwords logged in clear-text to world-readable file (CVE-2021-3429)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2021-3429
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Solution: 

Update packages.

CVEs: 
CVE-2021-3429
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Additional Info: 

N/A

Download: 

SRPMS
  1. cloud-init-20.3-10.el8.5.src.rpm
    MD5: 8cc6d516b030328dbc127170ff29aa13
    SHA-256: 9a248ec642615f44a51b2cb10d015cbee6ed3f1c9aafa927d0e0bf92eabbe8b0
    Size: 1.19 MB

Asianux Server 8 for x86_64
  1. cloud-init-20.3-10.el8.5.noarch.rpm
    MD5: 5860746143fef526feb6475efc83aa55
    SHA-256: 3356bccd3bed7714b2316dffd265b75ebbad99ec44e417bd9c7e3885fd3a0150
    Size: 1.00 MB