Bug 1222861 (CVE-2024-28718)

Summary:	VUL-0: CVE-2024-28718: openstack-magnum: TOCTOU issue when creating client certificate files in cert-manager.py
Product:	[Novell Products] SUSE Security Incidents	Reporter:	SMASH SMASH <smash_bz>
Component:	Incidents	Assignee:	Security Team bot <security-team>
Status:	IN_PROGRESS ---	QA Contact:	Security Team bot <security-team>
Severity:	Normal
Priority:	P3 - Medium	CC:	camila.matos, cloud-bugs, doreilly, stoyan.manolov
Version:	unspecified	Flags:	stoyan.manolov: needinfo? (cloud-bugs)
Target Milestone:	---
Hardware:	Other
OS:	Other
URL:	https://smash.suse.de/issue/401596/
Whiteboard:	CVSSv3.1:SUSE:CVE-2024-28718:7.0:(AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H)
Found By:	Security Response Team	Services Priority:
Business Priority:		Blocker:	---
Marketing QA Status:	---	IT Deployment:	---

Description SMASH SMASH 2024-04-15 18:35:47 UTC

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the cert_manager.py. component.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-28718
https://www.cve.org/CVERecord?id=CVE-2024-28718
https://bugs.launchpad.net/magnum/+bug/2047690
https://gist.github.com/Fewword/f098d8d6375ac25e27b18c0e57be532f
https://review.opendev.org/c/openstack/magnum/+/907305

Comment 1 Camila Camargo de Matos 2024-04-15 18:37:00 UTC

The fix for this issue can be found at:
- https://review.opendev.org/c/openstack/magnum/+/907305

Comment 4 Christian Almeida de Oliveira 2024-05-13 06:04:03 UTC

SOC is EOL, please refer to https://jira.suse.com/browse/MSC-777. 
Back to Security team.