Lucene search
K

566 matches found

Fedora
Fedora
added 2014/03/21 9:34 a.m.38 views

[SECURITY] Fedora 20 Update: python-swiftclient-2.0.2-1.fc20

Client library and command line utility for interacting with Openstack Object Storage API...

5.8CVSS3.1AI score0.00732EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2014/03/04 7:11 p.m.35 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

4.3CVSS5.8AI score0.01895EPSS
Exploits0References2
OSV
OSV
added 2014/01/23 1:55 a.m.6 views

CVE-2014-0006

The TempURL middleware in OpenStack Object Storage Swift 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack...

6.2AI score
Exploits0References3
OSV
OSV
added 2014/01/23 1:55 a.m.7 views

PYSEC-2014-116

The TempURL middleware in OpenStack Object Storage Swift 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack...

4.3CVSS6.2AI score0.01895EPSS
Exploits0References3
Prion
Prion
added 2014/01/23 1:55 a.m.25 views

Code injection

The TempURL middleware in OpenStack Object Storage Swift 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack...

4.3CVSS6.9AI score0.01895EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2014/01/23 1:0 a.m.34 views

CVE-2014-0006

The TempURL middleware in OpenStack Object Storage Swift 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack...

4.3CVSS6.2AI score0.01895EPSS
Exploits0
CVE
CVE
added 2014/01/23 1:0 a.m.80 views

CVE-2014-0006

The CVE-2014-0006 issue affects OpenStack Swift, where the TempURL middleware exhibits a timing side-channel risk that can leak secret URLs. Affected releases are Swift 1.4.6–1.8.0, 1.9.0–1.10.0, and 1.11.0. Root cause: timing-based information leakage in TempURL handling when an object name is k...

4.3CVSS6.3AI score0.01895EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/01/23 1:0 a.m.25 views

CVE-2014-0006

The TempURL middleware in OpenStack Object Storage Swift 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack...

6.2AI score0.01895EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/01/22 12:0 a.m.25 views

CVE-2014-0006

The TempURL middleware in OpenStack Object Storage Swift 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack...

4.3CVSS5.9AI score0.01895EPSS
Exploits0References3
Fedora
Fedora
added 2013/11/10 6:7 a.m.17 views

[SECURITY] Fedora 20 Update: openstack-glance-2013.2-1.fc20

OpenStack Image Service code-named Glance provides discovery, registratio n, and delivery services for virtual disk images. The Image Service API server provides a standard REST interface for querying information about virtual d isk images stored in a variety of back-end stores, including OpenSta...

2.4AI score
Exploits0
OpenVAS
OpenVAS
added 2013/08/20 12:0 a.m.27 views

Fedora Update for openstack-swift FEDORA-2013-14477

Check for the Version of openstack-swift OpenVAS Vulnerability Test Fedora Update for openstack-swift FEDORA-2013-14477 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...

4CVSS6.4AI score0.01661EPSS
Exploits1References2
Fedora
Fedora
added 2013/08/18 9:36 p.m.40 views

[SECURITY] Fedora 19 Update: openstack-swift-1.8.0-3.fc19

OpenStack Object Storage Swift aggregates commodity servers to work toget her in clusters for reliable, redundant, and large-scale storage of static obje cts. Objects are written to multiple hardware devices in the data center, with t he OpenStack software responsible for ensuring data replicatio...

4CVSS2.7AI score0.01661EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/08/15 12:0 a.m.36 views

Debian DSA-2737-1 : swift - several vulnerabilities

Several vulnerabilities have been discovered in Swift, the Openstack object storage. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-2161 Alex Gaynor from Rackspace reported a vulnerability in XML handling within Swift account servers. Account strin...

7.5CVSS5.7AI score0.01894EPSS
Exploits1References6
OSV
OSV
added 2013/08/12 12:0 a.m.42 views

DSA-2737-1 swift - several

Bulletin has no description...

7.5CVSS9.3AI score0.01894EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/08/12 12:0 a.m.27 views

Debian Security Advisory DSA 2737-1 (swift - several vulnerabilities)

Several vulnerabilities have been discovered in Swift, the Openstack object storage. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-2161 Alex Gaynor from Rackspace reported a vulnerability in XML handling within Swift account servers. Account strings...

7.5CVSS0.4AI score0.01894EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2013/08/11 12:0 a.m.25 views

Debian: Security Advisory (DSA-2737-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.6AI score0.01894EPSS
Exploits1References3
NVD
NVD
added 2012/10/22 11:55 p.m.42 views

CVE-2012-4406

OpenStack Object Storage swift before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object...

9.8CVSS9.6AI score0.06518EPSS
Exploits0References11
OSV
OSV
added 2012/10/22 11:55 p.m.13 views

CVE-2012-4406

OpenStack Object Storage swift before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object...

9.8CVSS9.6AI score
Exploits0References13
Prion
Prion
added 2012/10/22 11:55 p.m.29 views

Design/Logic Flaw

OpenStack Object Storage swift before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object...

7.5CVSS7.9AI score0.06518EPSS
Exploits0References11Affected Software7
Cvelist
Cvelist
added 2012/10/22 11:0 p.m.57 views

CVE-2012-4406

OpenStack Object Storage swift before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object...

9.5AI score0.06518EPSS
Exploits0References11
Rows per page
Query Builder