{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2022-33891","title":"Title"},{"category":"description","text":"The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in HttpSecurityFilter can allow someone to perform impersonation by providing an arbitrary user name. A malicious user might then be able to reach a permission check function that will ultimately build a Unix shell command based on their input, and execute it. This will result in arbitrary shell command execution as the user Spark is currently running as. This affects Apache Spark versions 3.0.3 and earlier, versions 3.1.1 to 3.1.2, and versions 3.2.0 to 3.2.1.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2022-33891","url":"https://www.suse.com/security/cve/CVE-2022-33891"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1204326 for CVE-2022-33891","url":"https://bugzilla.suse.com/1204326"},{"category":"external","summary":"Advisory link for SUSE-SU-2023:0070-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2023-January/013456.html"}],"title":"SUSE CVE CVE-2022-33891","tracking":{"current_release_date":"2025-07-02T02:29:21Z","generator":{"date":"2023-02-15T03:25:03Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2022-33891","initial_release_date":"2023-02-15T03:25:03Z","revision_history":[{"date":"2023-02-15T03:25:03Z","number":"2","summary":"Current version"},{"date":"2024-10-03T03:30:39Z","number":"3","summary":"Current version"},{"date":"2024-10-19T10:49:39Z","number":"4","summary":"Current version"},{"date":"2024-11-12T01:05:22Z","number":"5","summary":"Current version"},{"date":"2025-02-14T07:38:59Z","number":"6","summary":"Current version"},{"date":"2025-02-15T03:57:06Z","number":"7","summary":"Current version"},{"date":"2025-02-16T07:23:05Z","number":"8","summary":"Current version"},{"date":"2025-03-15T07:29:33Z","number":"9","summary":"Current version"},{"date":"2025-04-25T03:36:09Z","number":"10","summary":"Current version"},{"date":"2025-06-26T03:14:26Z","number":"11","summary":"Current version"},{"date":"2025-07-01T00:31:25Z","number":"12","summary":"Current version"},{"date":"2025-07-02T02:29:21Z","number":"13","summary":"Current version"}],"status":"interim","version":"13"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Manager Server Module 4.1","product":{"name":"SUSE Manager Server Module 4.1","product_id":"SUSE Manager Server Module 4.1","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-suse-manager-server:4.1"}}},{"category":"product_name","name":"SUSE Manager Server Module 4.2","product":{"name":"SUSE Manager Server Module 4.2","product_id":"SUSE Manager Server Module 4.2","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-suse-manager-server:4.2"}}},{"category":"product_name","name":"SUSE Manager Server Module 4.3","product":{"name":"SUSE Manager Server Module 4.3","product_id":"SUSE Manager Server Module 4.3","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-suse-manager-server:4.3"}}},{"category":"product_name","name":"SUSE OpenStack Cloud 9","product":{"name":"SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9","product_identification_helper":{"cpe":"cpe:/o:suse:suse-openstack-cloud:9"}}},{"category":"product_name","name":"SUSE OpenStack Cloud Crowbar 9","product":{"name":"SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9","product_identification_helper":{"cpe":"cpe:/o:suse:suse-openstack-cloud-crowbar:9"}}},{"category":"product_version","name":"openstack-barbican-7.0.1~dev24-3.17.1","product":{"name":"openstack-barbican-7.0.1~dev24-3.17.1","product_id":"openstack-barbican-7.0.1~dev24-3.17.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-barbican@7.0.1~dev24-3.17.1?upstream=openstack-barbican-7.0.1~dev24-3.17.1.src.rpm"}}},{"category":"product_version","name":"openstack-barbican-api-7.0.1~dev24-3.17.1","product":{"name":"openstack-barbican-api-7.0.1~dev24-3.17.1","product_id":"openstack-barbican-api-7.0.1~dev24-3.17.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-barbican-api@7.0.1~dev24-3.17.1?upstream=openstack-barbican-7.0.1~dev24-3.17.1.src.rpm"}}},{"category":"product_version","name":"openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","product":{"name":"openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","product_id":"openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-barbican-keystone-listener@7.0.1~dev24-3.17.1?upstream=openstack-barbican-7.0.1~dev24-3.17.1.src.rpm"}}},{"category":"product_version","name":"openstack-barbican-retry-7.0.1~dev24-3.17.1","product":{"name":"openstack-barbican-retry-7.0.1~dev24-3.17.1","product_id":"openstack-barbican-retry-7.0.1~dev24-3.17.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-barbican-retry@7.0.1~dev24-3.17.1?upstream=openstack-barbican-7.0.1~dev24-3.17.1.src.rpm"}}},{"category":"product_version","name":"openstack-barbican-worker-7.0.1~dev24-3.17.1","product":{"name":"openstack-barbican-worker-7.0.1~dev24-3.17.1","product_id":"openstack-barbican-worker-7.0.1~dev24-3.17.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-barbican-worker@7.0.1~dev24-3.17.1?upstream=openstack-barbican-7.0.1~dev24-3.17.1.src.rpm"}}},{"category":"product_version","name":"openstack-heat-gbp-14.0.1~dev5-3.12.1","product":{"name":"openstack-heat-gbp-14.0.1~dev5-3.12.1","product_id":"openstack-heat-gbp-14.0.1~dev5-3.12.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-heat-gbp@14.0.1~dev5-3.12.1?upstream=openstack-heat-gbp-14.0.1~dev5-3.12.1.src.rpm"}}},{"category":"product_version","name":"openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","product":{"name":"openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","product_id":"openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-horizon-plugin-gbp-ui@14.0.1~dev6-3.15.1?upstream=openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-dhcp-agent@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-gbp-14.0.1~dev52-3.37.1","product":{"name":"openstack-neutron-gbp-14.0.1~dev52-3.37.1","product_id":"openstack-neutron-gbp-14.0.1~dev52-3.37.1","product_identification_helper":{"purl":"pkg:rpm/suse/openstack-neutron-gbp@14.0.1~dev52-3.37.1?upstream=openstack-neutron-gbp-14.0.1~dev52-3.37.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-ha-tool@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-l3-agent@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-linuxbridge-agent@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-macvtap-agent@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-metadata-agent@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-metering-agent@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-openvswitch-agent@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"openstack-neutron-server-13.0.8~dev209-3.43.1","product":{"name":"openstack-neutron-server-13.0.8~dev209-3.43.1","product_id":"openstack-neutron-server-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/openstack-neutron-server@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"python-barbican-7.0.1~dev24-3.17.1","product":{"name":"python-barbican-7.0.1~dev24-3.17.1","product_id":"python-barbican-7.0.1~dev24-3.17.1","product_identification_helper":{"purl":"pkg:rpm/suse/python-barbican@7.0.1~dev24-3.17.1?upstream=openstack-barbican-7.0.1~dev24-3.17.1.src.rpm"}}},{"category":"product_version","name":"python-heat-gbp-14.0.1~dev5-3.12.1","product":{"name":"python-heat-gbp-14.0.1~dev5-3.12.1","product_id":"python-heat-gbp-14.0.1~dev5-3.12.1","product_identification_helper":{"purl":"pkg:rpm/suse/python-heat-gbp@14.0.1~dev5-3.12.1?upstream=openstack-heat-gbp-14.0.1~dev5-3.12.1.src.rpm"}}},{"category":"product_version","name":"python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","product":{"name":"python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","product_id":"python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","product_identification_helper":{"purl":"pkg:rpm/suse/python-horizon-plugin-gbp-ui@14.0.1~dev6-3.15.1?upstream=openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1.src.rpm"}}},{"category":"product_version","name":"python-neutron-13.0.8~dev209-3.43.1","product":{"name":"python-neutron-13.0.8~dev209-3.43.1","product_id":"python-neutron-13.0.8~dev209-3.43.1","product_identification_helper":{"cpe":"cpe:2.3:a:openstack:neutron:13.0.8~dev209:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/python-neutron@13.0.8~dev209-3.43.1?upstream=openstack-neutron-13.0.8~dev209-3.43.1.src.rpm"}}},{"category":"product_version","name":"python-neutron-gbp-14.0.1~dev52-3.37.1","product":{"name":"python-neutron-gbp-14.0.1~dev52-3.37.1","product_id":"python-neutron-gbp-14.0.1~dev52-3.37.1","product_identification_helper":{"purl":"pkg:rpm/suse/python-neutron-gbp@14.0.1~dev52-3.37.1?upstream=openstack-neutron-gbp-14.0.1~dev52-3.37.1.src.rpm"}}},{"category":"product_version","name":"spark-2.2.3-5.12.1","product":{"name":"spark-2.2.3-5.12.1","product_id":"spark-2.2.3-5.12.1","product_identification_helper":{"cpe":"cpe:2.3:a:apache:spark:2.2.3:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/spark@2.2.3-5.12.1?upstream=spark-2.2.3-5.12.1.src.rpm"}}},{"category":"product_version","name":"spark-core","product":{"name":"spark-core","product_id":"spark-core","product_identification_helper":{"cpe":"cpe:2.3:a:apache:spark:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/spark-core@?upstream=spark-core.src.rpm"}}},{"category":"product_version","name":"venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1","product":{"name":"venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1","product_id":"venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1","product_identification_helper":{"purl":"pkg:rpm/suse/venv-openstack-barbican-x86_64@7.0.1~dev24-3.37.1?upstream=venv-openstack-barbican-7.0.1~dev24-3.37.1.src.rpm"}}},{"category":"product_version","name":"venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1","product":{"name":"venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1","product_id":"venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1","product_identification_helper":{"purl":"pkg:rpm/suse/venv-openstack-horizon-x86_64@14.1.1~dev11-4.43.1?upstream=venv-openstack-horizon-14.1.1~dev11-4.43.1.src.rpm"}}},{"category":"product_version","name":"venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1","product":{"name":"venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1","product_id":"venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1","product_identification_helper":{"purl":"pkg:rpm/suse/venv-openstack-neutron-x86_64@13.0.8~dev209-6.43.1?upstream=venv-openstack-neutron-13.0.8~dev209-6.43.1.src.rpm"}}},{"category":"product_version","name":"venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1","product":{"name":"venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1","product_id":"venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1","product_identification_helper":{"purl":"pkg:rpm/suse/venv-openstack-nova-x86_64@18.3.1~dev92-3.43.1?upstream=venv-openstack-nova-18.3.1~dev92-3.43.1.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-api-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-api-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-retry-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-retry-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-worker-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-worker-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-heat-gbp-14.0.1~dev5-3.12.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev5-3.12.1"},"product_reference":"openstack-heat-gbp-14.0.1~dev5-3.12.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1"},"product_reference":"openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-gbp-14.0.1~dev52-3.37.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1"},"product_reference":"openstack-neutron-gbp-14.0.1~dev52-3.37.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-ha-tool-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-l3-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-metering-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-server-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-server-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"python-barbican-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.17.1"},"product_reference":"python-barbican-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"python-heat-gbp-14.0.1~dev5-3.12.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev5-3.12.1"},"product_reference":"python-heat-gbp-14.0.1~dev5-3.12.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1"},"product_reference":"python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"python-neutron-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev209-3.43.1"},"product_reference":"python-neutron-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"python-neutron-gbp-14.0.1~dev52-3.37.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev52-3.37.1"},"product_reference":"python-neutron-gbp-14.0.1~dev52-3.37.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"spark-2.2.3-5.12.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:spark-2.2.3-5.12.1"},"product_reference":"spark-2.2.3-5.12.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1"},"product_reference":"venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1"},"product_reference":"venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1"},"product_reference":"venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1"},"product_reference":"venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-api-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-api-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-retry-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-retry-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-barbican-worker-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.17.1"},"product_reference":"openstack-barbican-worker-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-heat-gbp-14.0.1~dev5-3.12.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev5-3.12.1"},"product_reference":"openstack-heat-gbp-14.0.1~dev5-3.12.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1"},"product_reference":"openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-gbp-14.0.1~dev52-3.37.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1"},"product_reference":"openstack-neutron-gbp-14.0.1~dev52-3.37.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-ha-tool-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-l3-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-metering-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"openstack-neutron-server-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev209-3.43.1"},"product_reference":"openstack-neutron-server-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"python-barbican-7.0.1~dev24-3.17.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.17.1"},"product_reference":"python-barbican-7.0.1~dev24-3.17.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"python-heat-gbp-14.0.1~dev5-3.12.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev5-3.12.1"},"product_reference":"python-heat-gbp-14.0.1~dev5-3.12.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1"},"product_reference":"python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"python-neutron-13.0.8~dev209-3.43.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev209-3.43.1"},"product_reference":"python-neutron-13.0.8~dev209-3.43.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"python-neutron-gbp-14.0.1~dev52-3.37.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev52-3.37.1"},"product_reference":"python-neutron-gbp-14.0.1~dev52-3.37.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"spark-2.2.3-5.12.1 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:spark-2.2.3-5.12.1"},"product_reference":"spark-2.2.3-5.12.1","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"spark-core as component of SUSE Manager Server Module 4.1","product_id":"SUSE Manager Server Module 4.1:spark-core"},"product_reference":"spark-core","relates_to_product_reference":"SUSE Manager Server Module 4.1"},{"category":"default_component_of","full_product_name":{"name":"spark-core as component of SUSE Manager Server Module 4.2","product_id":"SUSE Manager Server Module 4.2:spark-core"},"product_reference":"spark-core","relates_to_product_reference":"SUSE Manager Server Module 4.2"},{"category":"default_component_of","full_product_name":{"name":"spark-core as component of SUSE Manager Server Module 4.3","product_id":"SUSE Manager Server Module 4.3:spark-core"},"product_reference":"spark-core","relates_to_product_reference":"SUSE Manager Server Module 4.3"}]},"vulnerabilities":[{"cve":"CVE-2022-33891","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2022-33891"}],"notes":[{"category":"general","text":"The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in HttpSecurityFilter can allow someone to perform impersonation by providing an arbitrary user name. A malicious user might then be able to reach a permission check function that will ultimately build a Unix shell command based on their input, and execute it. This will result in arbitrary shell command execution as the user Spark is currently running as. This affects Apache Spark versions 3.0.3 and earlier, versions 3.1.1 to 3.1.2, and versions 3.2.0 to 3.2.1.","title":"CVE description"}],"product_status":{"known_not_affected":["SUSE Manager Server Module 4.1:spark-core","SUSE Manager Server Module 4.2:spark-core","SUSE Manager Server Module 4.3:spark-core"],"recommended":["SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud 9:spark-2.2.3-5.12.1","SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1","SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1","SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1","SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud Crowbar 9:spark-2.2.3-5.12.1"]},"references":[{"category":"external","summary":"CVE-2022-33891","url":"https://www.suse.com/security/cve/CVE-2022-33891"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1204326 for CVE-2022-33891","url":"https://bugzilla.suse.com/1204326"},{"category":"external","summary":"Advisory link for SUSE-SU-2023:0070-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2023-January/013456.html"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud 9:spark-2.2.3-5.12.1","SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1","SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1","SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1","SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud Crowbar 9:spark-2.2.3-5.12.1"]}],"scores":[{"cvss_v3":{"baseScore":8.8,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","version":"3.1"},"products":["SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud 9:spark-2.2.3-5.12.1","SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.37.1","SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.43.1","SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev209-6.43.1","SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev92-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.17.1","SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev5-3.12.1","SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev6-3.15.1","SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev209-3.43.1","SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev52-3.37.1","SUSE OpenStack Cloud Crowbar 9:spark-2.2.3-5.12.1"]}],"threats":[{"category":"impact","date":"2022-07-18T00:00:03Z","details":"important"}],"title":"CVE-2022-33891"}]}