CVE-2013-4428

描述

OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the download_image policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image UUID.

受影響套件(1)

• Debian/glancefrom 0, < 2013.2-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-4428