Описание
The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change.
An immutability flaw was discovered in openstack-glance, where the glance-manage DB allows deleted image IDs to be reassigned. The flaw could be exploited to allow remote authenticated users to cause other users to boot into a malicious image without knowing it.
Меры по смягчению последствий
For this flaw to be exploited, both non-admin image upload must be permitted and records of deleted IDs must have been purged from the openstack-glance 'images' database table. To prevent flaw exploitation:
- Do not allow non-admin users to upload images, or
- If you do permit normal users to upload images, do not purge the 'images' table. Note: It is safe to delete rows from
image_properties,image_tags,image_members, andimage_locationstables.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux OpenStack Platform 6 (Juno) | openstack-glance | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 7 (Kilo) | openstack-glance | Will not fix | ||
| Red Hat OpenStack Platform 10 (Newton) | openstack-glance | Will not fix | ||
| Red Hat OpenStack Platform 11 (Ocata) | openstack-glance | Will not fix | ||
| Red Hat OpenStack Platform 12 (Pike) | openstack-glance | Will not fix | ||
| Red Hat OpenStack Platform 8 (Liberty) | openstack-glance | Will not fix | ||
| Red Hat OpenStack Platform 9 (Mitaka) | openstack-glance | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
5.7 Medium
CVSS3
Связанные уязвимости
The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change.
The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change.
The glance-manage db in all versions of HPE Helion Openstack Glance al ...
The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change.
EPSS
5.7 Medium
CVSS3