Cinder

  1. Bug #1366990
  2. Comment #3

Comment 3 for bug 1366990

Revision history for this message
Duncan Thomas (duncan-thomas) wrote :

As Ying says, not really a vulnerability since the provider location is generated by the driver and you need DB write access to change it. Putting in some hardening is no bad thing, but not really exploitable.