Comment 4 for bug 1408663
Revision history for this message
| Jeremy Stanley (fungi) wrote Re: Glance still allows users to download and delete any file in glance-api server | #4 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0f7b58d
(Get the code!)
"2014.2 versions up to 2014.2.1" and "path traversal vulnerabilities in Glance were" but otherwise the proposed impact description looks good to me.