{"id":"DEBIAN-CVE-2014-7230","details":"The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log.","modified":"2026-04-28T20:17:22.049624Z","published":"2014-10-08T19:55:04.453Z","upstream":["CVE-2014-7230"],"references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2014-7230"}],"affected":[{"package":{"name":"cinder","ecosystem":"Debian:11","purl":"pkg:deb/debian/cinder?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-4"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"cinder","ecosystem":"Debian:12","purl":"pkg:deb/debian/cinder?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-4"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"cinder","ecosystem":"Debian:13","purl":"pkg:deb/debian/cinder?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-4"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"cinder","ecosystem":"Debian:14","purl":"pkg:deb/debian/cinder?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-4"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"nova","ecosystem":"Debian:11","purl":"pkg:deb/debian/nova?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-5"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"nova","ecosystem":"Debian:12","purl":"pkg:deb/debian/nova?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-5"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"nova","ecosystem":"Debian:13","purl":"pkg:deb/debian/nova?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-5"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"nova","ecosystem":"Debian:14","purl":"pkg:deb/debian/nova?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-5"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"openstack-trove","ecosystem":"Debian:12","purl":"pkg:deb/debian/openstack-trove?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-1"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"openstack-trove","ecosystem":"Debian:13","purl":"pkg:deb/debian/openstack-trove?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-1"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}},{"package":{"name":"openstack-trove","ecosystem":"Debian:14","purl":"pkg:deb/debian/openstack-trove?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2014.1.3-1"}]}],"ecosystem_specific":{"urgency":"low"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-7230.json"}}],"schema_version":"1.7.5"}