This seems like a similar issue of https://security.openstack.org/ossa/OSSA-2014-009.html
We did issue an advisory because nova user is able to read /etc/nova/nova.conf which usually contains sensitive information like services token.
Anyway, is this a regression or snapshot never used the disk info file to inspect file format ?
This seems like a similar issue of https:/ /security. openstack. org/ossa/ OSSA-2014- 009.html
We did issue an advisory because nova user is able to read /etc/nova/nova.conf which usually contains sensitive information like services token.
Anyway, is this a regression or snapshot never used the disk info file to inspect file format ?