Bug 1199443 (CVE-2022-21951)

Summary: VUL-0: CVE-2022-21951: Rancher: Weave CNI password is not set if RKE template is used with CNI value overridden
Product: [Novell Products] SUSE Security Incidents Reporter: Guilherme Macedo <guilherme.macedo>
Component: IncidentsAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Critical    
Priority: P3 - Medium CC: cathy.hu, jsegitz, meissner
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://github.com/rancherlabs/embargoed-security/issues/51
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Comment 1 Johannes Segitz 2022-05-13 08:25:48 UTC
Use CVE-2022-21951 for this