Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2022-4134

Published: 28 November 2022

malicious data modification when configuring Glance with COW backends

Notes

AuthorNote
mdeslaur
as of 2022-11-29, there is no software fix for this issue, the
recommended best practices to mitigate the issue is listed in
the upstream OSSN. Marking CVE as deferred.

Mitigation

See upstream recommendations at https://wiki.openstack.org/wiki/OSSN/OSSN-0090
Priority

Medium

Status

Package Release Status
glance
Launchpad, Ubuntu, Debian
bionic Deferred

focal Deferred

jammy Deferred

kinetic Deferred

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Deferred