f02609813e
This adds all previously published security notes to the repo. I also provided some helpful documentation in the README and provided e-mail and wiki format templates to aid in writing new security notes.
27 lines
1.0 KiB
Plaintext
27 lines
1.0 KiB
Plaintext
__NOTOC__
|
|
== Title (single sentence) ==
|
|
|
|
=== Summary ===
|
|
A few sentences describing the issue at a high level.
|
|
|
|
=== Affected Services / Software ===
|
|
A comma separated list of affected services and OpenStack releases.
|
|
|
|
=== Discussion ===
|
|
A detailed discussion of the problem. This should have enough detail that the
|
|
person reading can determine if their deployment is affected, when the problem
|
|
was introduced, and what types of attacks/problems that an affected deployment
|
|
would be exposed to.
|
|
|
|
=== Recommended Actions ===
|
|
A detailed description of what can be done to remediate the problem (if
|
|
possible). If the recommendation involves configuration changes, example
|
|
snippets of configuration files should be included here.
|
|
|
|
=== Contacts / References ===
|
|
* This OSSN :<link to launchpad OSSN bug>
|
|
* Original LaunchPad Bug : <link to launchpad bug for affected project/service>
|
|
* OpenStack Security ML : openstack-security@lists.openstack.org
|
|
* OpenStack Security Group : https://launchpad.net/~openstack-ossg
|
|
* CVE: <CVE number if one was filed>
|