Title: Glance task flow may fail to delete image from backend
Reporter: Abhishek Kekane (NTT)
Abhishek Kekane from NTT reported a vulnerability in Glance. By creating
numerous images using the import task flow API and deleting them, an
authenticated attacker may accumulate untracked image data in the
backend resulting in potential resource exhaustion and denial of
service. All glance setups are affected.
Arches, please stabilize =app-admin/glance-2015.1.0-r1 to match =app-admin/glance-2015.1.0 (currently only amd64), as it has a stablereq bug open against it.
Maintainer(s), please cleanup.
GLSA Vote: No
Cleanup done as requested by Matthew.
GLSA vote: no.