Comment 44 for bug 1482371
Revision history for this message
| Jeremy Stanley (fungi) wrote Re: Image status can be changed by passing header 'x-image-meta-status' with PUT operation using v1 (CVE-2015-5251) | #44 |
To reiterate the boilerplate in the bug description, please avoid (even private) disclosure of the vulnerability and associated patches to other individuals not already approved for access to this information. Deploying the patches in production in a large service provider runs the risk that others within the same organization have access to the details of this fix in advance of the downstream pre-notification.