SB2024100260 - Improper access control in OpenStack Ironic

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Improper access control (CVE-ID: CVE-2024-44082)

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions when handling images. A remote attacker can trick the victim into using a specially crafted image to gain access to sensitive information.

2) Improper validation of integrity check value (CVE-ID: CVE-2024-47211)

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to missing checksum validation of supplied image_source URLs when configured to convert images to a raw format for streaming. A remote attacker can perform MitM attack.

Remediation

Install update from vendor's website.

References

• https://bugs.launchpad.net/ironic/+bug/2071740
• https://www.openwall.com/lists/oss-security/2024/09/04/4
• https://security.openstack.org/ossa/OSSA-2024-003.html
• https://github.com/openstack/ironic/compare/24.1.2...26.1.0
• https://security.openstack.org/ossa/OSSA-2024-004.html