CVE-2014-0006 Openstack Swift: TempURL timing attack - linux/meta-cloud-services.git - Mirror of git.yoctoproject.org/meta-cloud-services.git

diff options

author	Amy Fong <amy.fong@windriver.com>	2014-05-07 14:20:09 -0400
committer	Bruce Ashfield <bruce.ashfield@windriver.com>	2014-05-08 14:30:03 -0400
commit	fd1371e01ea808309b76a72cc9a161c72e148279 (patch)
tree	c4a3063e4ec20cdea5589341b931cfe76d2dbde9 /meta-openstack/recipes-devtools/python/python-keystone_git.bb
parent	f1875da73f07825ad468648c6d154478a8673089 (diff)
download	meta-cloud-services-fd1371e01ea808309b76a72cc9a161c72e148279.tar.gz

CVE-2014-0006 Openstack Swift: TempURL timing attack

The TempURL middleware in OpenStack Object Storage (Swift) 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack. Signed-off-by: Amy Fong <amy.fong@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>

Diffstat (limited to 'meta-openstack/recipes-devtools/python/python-keystone_git.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: