Cinder

  1. Bug #1415087
  2. Comment #36

Comment 36 for bug 1415087

Revision history for this message
Eric Harney (eharney) wrote : Re: Format-guessing and file disclosure in image convert

This patch handles this scenario by stopping the upload process if the volume data contains a header referencing a backing file.

This is an intermediate solution until we can implement full format tracking of volume data, but it prevents this bug from causing a data leak by failing safe.