Bugs fixes in "cyborg"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2026-40214 | In OpenStack Cyborg before 16.0.1, the Accelerator Request (ARQ) API does not enforce project ownership at any layer. The project_id column in the da | 2026-06-09 |
| CVE | CVE-2026-40213 | OpenStack Cyborg before 16.0.1 uses rule:allow (check_str='@') as the default policy for multiple API endpoints. This unconditionally authorizes any | 2026-06-09 |
| CVE | CVE-2026-40214 | In OpenStack Cyborg before 16.0.1, the Accelerator Request (ARQ) API does not enforce project ownership at any layer. The project_id column in the da | 2026-06-09 |
| CVE | CVE-2026-40213 | OpenStack Cyborg before 16.0.1 uses rule:allow (check_str='@') as the default policy for multiple API endpoints. This unconditionally authorizes any | 2026-06-09 |
About
-
Send Feedback to @ubuntu_updates
