Glance

  1. Bug #1135541
  2. Comment #30

Comment 30 for bug 1135541

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to glance (master)

Reviewed: https://review.openstack.org/24437
Committed: http://github.com/openstack/glance/commit/e75764eee34915f8bc5b664ac18e47a556c9d3dd
Submitter: Jenkins
Branch: master

commit e75764eee34915f8bc5b664ac18e47a556c9d3dd
Author: Stuart McLaren <email address hidden>
Date: Thu Mar 14 14:27:35 2013 +0000

    Do not return location in headers

    In some cases credentials were being leaked when downloading a cached
    v1 image.

    Fixes bug 1135541, CVE-2013-1840

    Change-Id: Ie4077470d31249c5bd654985fcef577f4f5cfc59