Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2022-4134

Published: 28 November 2022

malicious data modification when configuring Glance with COW backends

Notes

AuthorNote
mdeslaur 
as of 2022-11-29, there is no software fix for this issue, the
recommended best practices to mitigate the issue is listed in
the upstream OSSN. Marking CVE as deferred.

Mitigation

See upstream recommendations at https://wiki.openstack.org/wiki/OSSN/OSSN-0090
Priority

Medium

Status

Package Release Status
glance
Launchpad, Ubuntu, Debian 		bionic Deferred

focal Deferred

jammy Deferred

kinetic Deferred

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Deferred

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading