IBM NAS cinder driver sets 'rw' permissions to all during volume create operation, which is security issue
Bug #1367238 reported by
Nilesh Bhosale
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Cinder |
Fix Released
|
High
|
Nilesh Bhosale | ||
OpenStack Security Advisory |
Won't Fix
|
Undecided
|
Unassigned |
Bug Description
IBM NAS cinder driver sets 'rw' permissions to all during volume create operation from a volume snapshot or from an existing volume (volume clone operation).
This is not required as 'rw' permissions to the user only should be sufficient.
This also helps resolve the security issue setting 'rw' permissions to all.
Changed in cinder: | |
assignee: | nobody → Nilesh Bhosale (nilesh-bhosale) |
Changed in cinder: | |
importance: | Undecided → High |
milestone: | none → juno-rc1 |
tags: | added: drivers ibmnas |
Changed in cinder: | |
assignee: | Nilesh Bhosale (nilesh-bhosale) → Jay Bryant (jsbryant) |
tags: | added: security |
information type: | Public Security → Public |
Changed in ossa: | |
status: | Incomplete → Won't Fix |
Changed in cinder: | |
status: | Fix Committed → Fix Released |
Changed in cinder: | |
milestone: | juno-rc1 → 2014.2 |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/120067
Review: https:/