openstack/ossa
Code Issues Proposed changes
313 Commits 1 Branch 0 Tags
master
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Jeremy Stanley a757db28fb Admin-only bugs are hardening opportunities 
We've treated "admin-only" exploitable bugs as security hardening
opportunities since there are countless ways a system-wide
administrator can cause trouble in an OpenStack deployment. Our
projects often make no attempt to guarantee that administrator API
functions are safe from granting access at the operating system
level (see unfinished rootwrap/privsep transition), and admin
privileges should never be granted to untrusted users.

Change-Id: I3f1ded8c991308ee6d30449428b780895223d0b5
Signed-off-by: Jeremy Stanley <fungi@yuggoth.org>
2026-03-26 18:38:35 +00:00
doc/source
Admin-only bugs are hardening opportunities
2026-03-26 18:38:35 +00:00
ossa
Add OSSA-2026-004 (CVE-2026-pending)
2026-03-19 10:51:33 -04:00
tools
Add getbugs tools
2019-07-22 15:27:33 -04:00
.gitignore
Make Git ignore files generated by doc builds
2016-08-26 16:39:17 +00:00
.gitreview
OpenDev Migration Patch
2019-04-19 19:34:45 +00:00
.zuul.yaml
Use promote job
2019-08-24 16:22:46 +02:00
LICENSE
Import basic repository structure
2014-12-01 11:27:31 +01:00
README.rst
Update and replace http with https for doc links
2019-12-25 16:00:00 +08:00
setup.cfg
Switch to newer openstackdocstheme version
2020-06-03 20:50:01 +02:00
setup.py
Import basic repository structure
2014-12-01 11:27:31 +01:00
test-requirements.txt
Un-pin PyYAML
2022-12-13 16:34:41 +00:00
tox.ini
Update tox.ini for compatibility with Tox 4.x
2023-01-17 14:35:03 +00:00

README.rst

Records of each security advisory issued by the OpenStack VMT https://security.openstack.org

View Git Blame Copy Permalink
Description
OpenStack Security Advisories
Readme 2.2 MiB
Languages
Python 100%