1
Candidate: CVE-2015-1881
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1881
5
http://seclists.org/oss-sec/2015/q1/600
6
http://lists.openstack.org/pipermail/openstack-announce/2015-February/000336.html
8
OpenStack Image Registry and Delivery Service (Glance) 2014.2 through
9
2014.2.2 does not properly remove images, which allows remote authenticated
10
users to cause a denial of service (disk consumption) by creating a large
11
number of images using the task v2 API and then deleting them, a different
12
vulnerability than CVE-2014-9684.
16
https://bugs.launchpad.net/glance/+bug/1420696
18
Discovered-by: Abhishek Kekane
22
upstream: https://review.openstack.org/#/c/156553/ (juno)
23
upstream: https://review.openstack.org/#/c/156493/ (kilo)
24
upstream_glance: needs-triage
26
precise_glance: not-affected (code not present)
27
trusty_glance: not-affected (code not present)
28
utopic_glance: not-affected (1:2014.2.3-0ubuntu1)
29
vivid_glance: not-affected (1:2015.1~b3-0ubuntu1)
30
devel_glance: not-affected (1:2015.1~b3-0ubuntu1)