Candidate: CVE-2015-3289
PublicDate: 2015-08-14 18:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3289
 http://www.openwall.com/lists/oss-security/2015/07/28/6
Description:
 OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated users
 to cause a denial of service (disk consumption) by repeatedly using the
 import task flow API to create images and then deleting them.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/glance/+bug/1454087
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793896
Priority: medium
Discovered-by: Abhishek Kekane
Assigned-to:
CVSS: 

Patches_glance:
 upstream: https://review.openstack.org/#/c/181816/ (kilo)
 upstream: https://review.openstack.org/#/c/181345/ (liberty)
upstream_glance: released (2015.1.1)
precise_glance: not-affected (code not present)
trusty_glance: not-affected (code not present)
trusty/esm_glance: DNE (trusty was not-affected [code not present])
vivid_glance: not-affected (1:2015.1.1-0ubuntu2)
devel_glance: not-affected (2:11.0.0~b2-0ubuntu2)