CVE-2014-5356

2014-08-25T10:55:07
ID CVE-2014-5356
Type cve
Reporter NVD
Modified 2017-01-06T22:00:27

Description

OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the image_size_cap configuration option, which allows remote authenticated users to cause a denial of service (disk consumption) by uploading a large image.