[SECURITY] Fedora 18 Update: openstack-glance-2012.2-3.fc18

updates at fedoraproject.org updates at fedoraproject.org
Wed Nov 14 02:07:17 UTC 2012


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-17901
2012-11-09 21:00:28
--------------------------------------------------------------------------------

Name        : openstack-glance
Product     : Fedora 18
Version     : 2012.2
Release     : 3.fc18
URL         : http://glance.openstack.org
Summary     : OpenStack Image Service
Description :
OpenStack Image Service (code-named Glance) provides discovery, registration,
and delivery services for virtual disk images. The Image Service API server
provides a standard REST interface for querying information about virtual disk
images stored in a variety of back-end stores, including OpenStack Object
Storage. Clients can register new virtual disk images with the Image Service,
query for information on publicly available disk images, and use the Image
Service's client library for streaming virtual disk images.

This package contains the API and registry servers.

--------------------------------------------------------------------------------
Update Information:

- Fix Glance Authentication bypass for image deletion (CVE-2012-4573)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #872302 - CVE-2012-4573 CVE-2012-5482 OpenStack: Glance Authentication bypass for image deletion
        https://bugzilla.redhat.com/show_bug.cgi?id=872302
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update openstack-glance' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list