CVE-2012-5482

Published: 11 November 2012

The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4573.

Priority

Medium

Status

Package Release Status
glance
Launchpad, Ubuntu, Debian
Upstream
Released (2012.1.1-3)