6 matches found
RHEL 6 : openstack-glance (RHSA-2014:1685)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:1685 advisory. OpenStack Image service glance provides discovery, registration, and delivery services for disk and server images. It provides the ability to copy or...
Oracle Solaris Third-Party Patch Update : glance (cve_2014_5356_permissions_privileges)
The remote Solaris system is missing necessary patches to address security updates : - OpenStack Image Registry and Delivery Service Glance before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the imagesizecap configuration option, whic...
Fedora 21 : openstack-glance-2014.1.3-2.fc21 (2014-12627)
Upstreamed security patch CVE-2014-5356 - Glance store DoS through disk space exhaustion Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Fedora Update for openstack-glance FEDORA-2014-11697
Check the version of openstack-glance SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868414";...
CVE-2014-5356
OpenStack Image Registry and Delivery Service Glance before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the imagesizecap configuration option, which allows remote authenticated users to cause a denial of service disk consumption by...
CVE-2014-5356
The CVE-2014-5356 vulnerability affects OpenStack Image Registry and Delivery Service (Glance) prior to 2013.2.4, 2014.x prior to 2014.1.3, and Juno prior to Juno-3 when using the V2 API. The root cause is that the image_size_cap option was not honored, allowing an authenticated remote user to up...