Difference between revisions of "SecurityAdvisories/Folsom"
(CVE-2012-4573) |
(CVE-2012-5482) |
||
| Line 10: | Line 10: | ||
| Impact | | Impact | ||
|- | |- | ||
| − | | Glance | + | |rowspan=2 |Glance |
| November 7, 2012 | | November 7, 2012 | ||
| [https://lists.launchpad.net/openstack/msg18386.html 2012-017] | | [https://lists.launchpad.net/openstack/msg18386.html 2012-017] | ||
| [https://bugs.launchpad.net/glance/+bug/1065187 2012-4573] | | [https://bugs.launchpad.net/glance/+bug/1065187 2012-4573] | ||
| − | | Authentication bypass for image deletion | + | |rowspan=2 |Authentication bypass for image deletion |
| − | | High | + | |rowspan=2 |High |
| + | |- | ||
| + | | November 9, 2012 | ||
| + | | [https://lists.launchpad.net/openstack/msg18466.html 2012-017.1] | ||
| + | | [https://bugs.launchpad.net/glance/+bug/1076506 2012-5482] | ||
|} | |} | ||
Revision as of 21:32, 20 November 2012
Folsom Security Advisories
| Product | Date | Openstack Security Advisory | CVE Number | Title | Impact |
| Glance | November 7, 2012 | 2012-017 | 2012-4573 | Authentication bypass for image deletion | High |
| November 9, 2012 | 2012-017.1 | 2012-5482 |
Fixed in 2012.2
| Product | Date | Openstack Security Advisory | CVE Number | Title | Impact |
| Keystone | September 28, 2012 | 2012-05 | 2012-4456 | Some actions in Keystone admin API do not validate token | High |
| 2012-4456 |
