Lucene search
UbuntuUSN-1764-1HistoryMar 14, 2013 - 12:00 a.m.
OpenStack Glance vulnerability
2013-03-1400:00:00
ubuntu.com
27
Releases
- Ubuntu 12.10
- Ubuntu 12.04
Packages
- glance - OpenStack Image Registry and Delivery Service
Details
Stuart McLaren discovered an issue with Glance v1 API requests. An
authenticated attacker could exploit this to expose the Glance operator’s
Swift and/or S3 credentials via the response headers when requesting a
cached image.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.10 | noarch | python-glance | < 2012.2.1-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | glance | < 2012.2.1-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | glance-api | < 2012.2.1-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | glance-client | < 2012.2.1-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | glance-common | < 2012.2.1-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | glance-registry | < 2012.2.1-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-glance-doc | < 2012.2.1-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | python-glance | < 2012.1.3+stable~20120821-120fcf-0ubuntu1.5 | UNKNOWN |
| Ubuntu | 12.04 | noarch | glance | < 2012.1.3+stable~20120821-120fcf-0ubuntu1.5 | UNKNOWN |
| Ubuntu | 12.04 | noarch | glance-api | < 2012.1.3+stable~20120821-120fcf-0ubuntu1.5 | UNKNOWN |
References
Related
veracode
veracode
Information Disclosure
2019-01-15 08:51:25
prion
prion
Default credentials
2013-03-22 21:55:00
openvas
openvas
Ubuntu: Security Advisory (USN-1764-1)
2013-03-15 00:00:00
Ubuntu Update for glance USN-1764-1
2013-03-15 00:00:00
nessus
nessus
Ubuntu 12.04 LTS / 12.10 : glance vulnerability (USN-1764-1)
2013-03-15 00:00:00
openSUSE Security Update : openstack (openSUSE-2013-237)
2014-06-13 00:00:00
cvelist
cvelist
CVE-2013-1840
2013-03-22 21:00:00
securityvulns
securityvulns
[USN-1764-1] OpenStack Glance vulnerability
2013-03-19 00:00:00
OpenStack security vulnerabilities
2013-03-24 00:00:00
debiancve
debiancve
CVE-2013-1840
2013-03-22 21:55:00
cve
cve
CVE-2013-1840
2013-03-22 21:55:00
github
github
OpenStack Glance is vulnerable to Exposure of Sensitive Information
2022-05-17 01:36:25
ubuntucve
ubuntucve
CVE-2013-1840
2013-03-14 00:00:00
redhat
redhat
(RHSA-2013:0707) Moderate: openstack-glance security and bug fix update
2013-04-04 00:00:00