Candidate: CVE-2013-2296
PublicDate: 2013-09-17 12:04:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2296
 https://eucalyptus.atlassian.net/browse/EUCA-3074
Description:
 Walrus in Eucalyptus before 3.2.2 does not verify authorization for the
 GetBucketLoggingStatus, SetBucketLoggingStatus, and
 SetBucketVersioningStatus bucket operations, which allows remote
 authenticated users to bypass intended restrictions on (1) modifying the
 logging setting, (2) modifying the versioning setting, or (3) accessing
 activity logs via a request.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_eucalyptus:
upstream_eucalyptus: released (3.2.2)
hardy_eucalyptus: DNE
lucid_eucalyptus: ignored (reached end-of-life)
oneiric_eucalyptus: ignored (reached end-of-life)
precise_eucalyptus: ignored (reached end-of-life)
precise/esm_eucalyptus: DNE (precise was needed)
quantal_eucalyptus: DNE
raring_eucalyptus: DNE
saucy_eucalyptus: DNE
trusty_eucalyptus: DNE
trusty/esm_eucalyptus: DNE
utopic_eucalyptus: DNE
vivid_eucalyptus: DNE
vivid/stable-phone-overlay_eucalyptus: DNE
vivid/ubuntu-core_eucalyptus: DNE
wily_eucalyptus: DNE
xenial_eucalyptus: DNE
yakkety_eucalyptus: DNE
zesty_eucalyptus: DNE
devel_eucalyptus: DNE