Lucene search
UbuntuUSN-2001-1HistoryOct 23, 2013 - 12:00 a.m.
Swift vulnerability
2013-10-2300:00:00
ubuntu.com
36
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
AI Score
6.1
Confidence
Low
EPSS
0.003
Percentile
68.1%
Releases
- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04
Packages
- swift - OpenStack distributed virtual object store
Details
Peter Portante discovered that Swift did not properly handle requests with
old X-Timestamp values. An authenticated attacker could exploit this to
cause a denial of service via disk consumption.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.04 | noarch | python-swift | <Β 1.8.0-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 13.04 | noarch | swift | <Β 1.8.0-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 13.04 | noarch | swift-account | <Β 1.8.0-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 13.04 | noarch | swift-container | <Β 1.8.0-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 13.04 | noarch | swift-doc | <Β 1.8.0-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 13.04 | noarch | swift-object | <Β 1.8.0-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 13.04 | noarch | swift-proxy | <Β 1.8.0-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-swift | <Β 1.7.4-0ubuntu2.3 | UNKNOWN |
| Ubuntu | 12.10 | noarch | swift | <Β 1.7.4-0ubuntu2.3 | UNKNOWN |
| Ubuntu | 12.10 | noarch | swift-account | <Β 1.7.4-0ubuntu2.3 | UNKNOWN |
References
Related
ubuntucve
ubuntucve
CVE-2013-4155
2013-08-07 00:00:00
openvas
openvas
Ubuntu Update for swift USN-2001-1
2013-10-29 00:00:00
Fedora Update for openstack-swift FEDORA-2013-14477
2013-08-20 00:00:00
Ubuntu: Security Advisory (USN-2001-1)
2013-10-29 00:00:00
nessus
nessus
Ubuntu 12.04 LTS / 12.10 / 13.04 : swift vulnerability (USN-2001-1)
2013-10-24 00:00:00
Fedora 19 : openstack-swift-1.8.0-3.fc19 (2013-14477)
2013-08-20 00:00:00
Debian DSA-2737-1 : swift - several vulnerabilities
2013-08-15 00:00:00
cvelist
cvelist
CVE-2013-4155
2013-08-20 22:00:00
debiancve
debiancve
CVE-2013-4155
2013-08-20 22:55:04
nvd
nvd
CVE-2013-4155
2013-08-20 22:55:04
github
github
OpenStack Swift allows authenticated users to cause a denial of service
2022-05-17 04:58:58
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:58:17
fedora
fedora
[SECURITY] Fedora 19 Update: openstack-swift-1.8.0-3.fc19
2013-08-18 21:36:36
redhat
redhat
(RHSA-2013:1197) Moderate: openstack-swift security update
2013-09-03 00:00:00
cve
cve
CVE-2013-4155
2013-08-20 22:55:04
seebug
seebug
OpenStack Swift θΏη¨ζη»ζε‘ζΌζ΄(CVE-2013-4155)
2013-08-27 00:00:00
prion
prion
Design/Logic Flaw
2013-08-20 22:55:00
securityvulns
securityvulns
[USN-2001-1] Swift vulnerability
2013-10-28 00:00:00
OpenStack multiple security vulnerabilities
2013-07-01 00:00:00
OpenStack multiple security vulnerabilities
2013-12-23 00:00:00
osv
osv
swift - several
2013-08-12 00:00:00
debian
debian
[SECURITY] [DSA 2737-1] swift security update
2013-08-12 18:39:56
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
AI Score
6.1
Confidence
Low
EPSS
0.003
Percentile
68.1%
Related for USN-2001-1