Bug 913644 - (CVE-2014-9623) VUL-0: CVE-2014-9623: openstack-glance: Glance user storage quota bypass
(CVE-2014-9623)
VUL-0: CVE-2014-9623: openstack-glance: Glance user storage quota bypass
Status: RESOLVED WONTFIX
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Bernhard Wiedemann
Security Team bot
https://smash.suse.de/issue/112766/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2015-01-19 09:48 UTC by Victor Pereira
Modified: 2015-01-21 13:32 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Victor Pereira 2015-01-19 09:48:19 UTC
CVE-2014-9623

A vulnerability was discovered in OpenStack (see below). In order to
ensure full traceability, we need a CVE number assigned that we can
attach to further notifications. This issue is already public, although an
advisory was not sent yet.

Title: Glance user storage quota bypass
Reporter: Tushar Patil (NTT)
Products: Glance
Versions: up to 2014.1.3 and 2014.2 version up to 2014.2.1

Description:
Tushar Patil from NTT reported a vulnerability in Glance. By deleting images
that are being uploaded, a malicious user can overcome the storage quota and
thus may overrun the backend. Images in deleted state are not taken into
account by quota and won't be effectively deleted until the upload is
completed. Only Glance setups configured with user_storage_quota are affected.


References:
https://launchpad.net/bugs/1398830
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9623
http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-9623.html
Comment 1 Swamp Workflow Management 2015-01-19 23:02:05 UTC
bugbot adjusting priority
Comment 2 Bernhard Wiedemann 2015-01-21 13:32:30 UTC
It seems, we are not affected here, because we have
/opt/dell/chef/cookbooks/glance/templates/default/glance-api.conf.erb:#user_storage_quota = 0

and the default is 0