| Release | Version |
|---|---|
| bullseye | 11.0.0-2 |
| bookworm | 15.0.0-1 |
| bookworm (security) | 15.0.0-1+deb12u1 |
| trixie | 20.0.0-2 |
| trixie (security) | 20.0.0-2+deb13u1 |
| forky | 22.0.0-1 |
| sid | 22.0.0-1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| TEMP-1138849-FDBA9E | vulnerable | vulnerable (no DSA, ignored) | fixed | vulnerable | vulnerable | Mistral workflow execution context exposes Keystone auth token |
| CVE-2026-41283 | vulnerable | fixed | fixed | vulnerable | vulnerable | OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Executio ... |
| Bug | Description |
|---|---|
| CVE-2019-3866 | An information-exposure vulnerability was discovered where openstack-m ... |
| CVE-2018-16849 | A flaw was found in openstack-mistral. By manipulating the SSH private ... |
| CVE-2018-16848 | A Denial of Service (DoS) condition is possible in OpenStack Mistral i ... |
| CVE-2017-2622 | An accessibility flaw was found in the OpenStack Workflow (mistral) se ... |
| DSA / DLA | Description |
|---|---|
| DSA-6333-1 | mistral - security update |