CVE-2013-0212

Publication date 29 January 2013

Last updated 24 July 2024


Ubuntu priority

store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) before 2012.2.3, and Grizzly, when in Swift single tenant mode, logs the Swift endpoint's user name and password in cleartext when the endpoint is misconfigured or unusable, allows remote authenticated users to obtain sensitive information by reading the error messages.

Status

Package Ubuntu Release Status
glance 12.10 quantal
Fixed 2012.2.1-0ubuntu1.1
12.04 LTS precise
Fixed 2012.1.3+stable~20120821-120fcf-0ubuntu1.3
11.10 oneiric
Fixed 2011.3-0ubuntu4.2
10.04 LTS lucid Not in release
8.04 LTS hardy Not in release

References

Related Ubuntu Security Notices (USN)

    • USN-1710-1
    • OpenStack Glance vulnerability
    • 29 January 2013

Other references