Bugzilla – Bug 1173631
VUL-0: CVE-2017-8761: openstack-swift: logs valid temporary urls which could result in access to data by anyone with access to the logfiles
Last modified: 2020-07-02 13:01:29 UTC
The proxy server will log valid temporary urls, that might be used to gain access to data by anyone with access to the logfiles. This is especially important with tempurls that are valid for extended periods and/or when using central logging servers, accessed by operators that have no access to the Swift servers.
>The new affect line is: >=2.11.0 <=2.13.1, >=2.14.0 <=2.15.1
Not for us. Closing.