-
Committer:
Package Import Robot
-
Author(s):
Jamie Strandboge
-
Date:
2012-11-08 07:41:02 UTC
-
Revision ID:
package-import@ubuntu.com-20121108074102-3xe3dr2e8ndjmwns
Tags: 2012.2-0ubuntu2.2
* SECURITY UPDATE: deletion of arbitrary public and shared images via
authenticated user
- debian/patches/CVE-2012-4573.patch: adjust glance/api/v1/images.py to
ensure image is owned by user before delayed_deletion
- CVE-2012-4573
* debian/patches/fakeauth-not-always-admin.patch: add required testsuite
patch in support of the testsuite changes in CVE-2012-4573.patch