web-download is subject to same port scan vulnerability as v1 copy_from
Bug #1748512 reported by
Erno Kuvaja
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Glance |
Fix Released
|
Critical
|
Erno Kuvaja | ||
Bug Description
The feature is currently at parr with v1 copy_from which means https:/
| Changed in glance: | |
| importance: | Undecided → Critical |
| assignee: | nobody → Erno Kuvaja (jokke) |
| milestone: | none → queens-rc2 |
| Changed in glance: | |
| status: | New → In Progress |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to glance (master) | #1 |
| Changed in glance: | |
| status: | In Progress → Fix Released |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to glance (stable/queens) | #2 |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to glance (stable/queens) | #3 |
| tags: | added: in-stable-queens |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix included in openstack/glance 16.0.0.0rc2 | #4 |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix included in openstack/glance 17.0.0.0b1 | #5 |
To post a comment you must log in.
Reviewed: https:/
Committed: https:/
Submitter: Zuul
Branch: master
commit 1591f573ae20037
Author: Erno Kuvaja <email address hidden>
Date: Fri Feb 9 13:18:19 2018 +0000
URI filtering for web-download
Implement URI filtering to prevent port scanning with the web-download
Image import method.
Closes-Bug: #1748512
Change-Id: Ide5ace8979bb12