1. Ubuntu Security Notices
  2. USN-8421-1

USN-8421-1: Ironic vulnerabilities

Publication date

11 June 2026

Overview

Several security issues were fixed in Ironic.

Releases

Packages

  • ironic - OpenStack service which provides the capability to orchestrate bare metal servers

Details

Dmitry Tantsur and Tuomo Tanskanen discovered that Ironic did not
properly validate file paths when handling ISO images. A privileged
authenticated remote user could use this issue to perform path
traversal via a crafted ISO image and overwrite arbitrary files on
the Ironic conductor. (CVE-2026-48681)

Dmitry Tantsur and Tuomo Tanskanen discovered that Ironic did not
properly validate kernel command line parameters. A privileged
authenticated remote user could use this issue to inject
scripts during node boot and possibly execute arbitrary code.
(CVE-2026-46447)

Dmitry Tantsur and Tuomo Tanskanen discovered that Ironic
incorrectly restricted access to custom PXE templates. A privileged
authenticated remote user could use this issue to read arbitrary
sensitive files on the Ironic conductor. (CVE-2026-44917)

Dmitry Tantsur and Tuomo Tanskanen discovered that Ironic did not
properly validate file paths when handling ISO images. A privileged
authenticated remote user could use this issue to perform path
traversal via a crafted ISO image and overwrite arbitrary files on
the Ironic conductor. (CVE-2026-48681)

Dmitry Tantsur and Tuomo Tanskanen discovered that Ironic did not
properly validate kernel command line parameters. A privileged
authenticated remote user could use this issue to inject
scripts during node boot and possibly execute arbitrary code.
(CVE-2026-46447)

Dmitry Tantsur and Tuomo Tanskanen discovered that Ironic
incorrectly restricted access to custom PXE templates. A privileged
authenticated remote user could use this issue to read arbitrary
sensitive files on the Ironic conductor. (CVE-2026-44917)

Update instructions

In general, a standard system update will make all the necessary changes.

Learn more about how to get the fixes.

The problem can be corrected by updating your system to the following package versions:

Ubuntu Release Package Version
26.04 LTS resolute ironic-api –  1:35.0.0-0ubuntu2.1
ironic-common –  1:35.0.0-0ubuntu2.1
ironic-conductor –  1:35.0.0-0ubuntu2.1
python3-ironic –  1:35.0.0-0ubuntu2.1
25.10 questing ironic-api –  1:32.0.0-0ubuntu1.1
ironic-common –  1:32.0.0-0ubuntu1.1
ironic-conductor –  1:32.0.0-0ubuntu1.1
python3-ironic –  1:32.0.0-0ubuntu1.1
24.04 LTS noble ironic-api –  1:24.1.1-0ubuntu1.3
ironic-common –  1:24.1.1-0ubuntu1.3
ironic-conductor –  1:24.1.1-0ubuntu1.3
python3-ironic –  1:24.1.1-0ubuntu1.3
22.04 LTS jammy ironic-api –  1:20.1.0-0ubuntu1.3
ironic-common –  1:20.1.0-0ubuntu1.3
ironic-conductor –  1:20.1.0-0ubuntu1.3
python3-ironic –  1:20.1.0-0ubuntu1.3

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

References

Have additional questions?

Talk to a member of the team ›