Описание
OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the image_size_cap configuration option, which allows remote authenticated users to cause a denial of service (disk consumption) by uploading a large image.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:2014.2~b3-0ubuntu3 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1:2014.1.2-0ubuntu1.1]] |
| lucid | DNE | |
| precise | not-affected | code-not-present |
| trusty | released | 1:2014.1.2-0ubuntu1.1 |
| trusty/esm | DNE | trusty was released [1:2014.1.2-0ubuntu1.1] |
| upstream | needed |
Показывать по
EPSS
4 Medium
CVSS2
Связанные уязвимости
OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the image_size_cap configuration option, which allows remote authenticated users to cause a denial of service (disk consumption) by uploading a large image.
OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the image_size_cap configuration option, which allows remote authenticated users to cause a denial of service (disk consumption) by uploading a large image.
OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4 ...
OpenStack Glance improper validation of the image_size_cap configuration option
EPSS
4 Medium
CVSS2