Title: Information leak via Swift tempurls Reporter: Richard Hawkins (Rackspace) and Swift core reviewers Products: Swift Affects: versions through 2.3.0 Description: Richard Hawkins from Rackspace and Swift core reviewers reported a vulnerability in Swift tempurls. When in possession of a tempurl key authorized for PUT, a malicious actor may retrieve other objects in the same Swift account (tenant). All Swift setups are affected. Reproducible: Always
arches please stabilize the following =sys-cluster/swift-2.3.0-r1
amd64 stable
x86 stable. Maintainer(s), please cleanup.
removed the badness
GLSA Vote: No
Vote: no. Closing NOGLSA.