[ubuntu/quantal-security] glance 2012.2-0ubuntu2.2 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Thu Nov 8 16:20:21 UTC 2012

glance (2012.2-0ubuntu2.2) quantal-security; urgency=low

  * SECURITY UPDATE: deletion of arbitrary public and shared images via
    authenticated user
    - debian/patches/CVE-2012-4573.patch: adjust glance/api/v1/images.py to
      ensure image is owned by user before delayed_deletion
    - CVE-2012-4573
  * debian/patches/fakeauth-not-always-admin.patch: add required testsuite
    patch in support of the testsuite changes in CVE-2012-4573.patch

Date: 2012-11-08 14:05:16.016549+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: OpenStack Ubuntu packagers <openstack-packaging at lists.ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Quantal-changes mailing list