Raw SQL used in swift/swift/common/db.py could be escaped
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Compute (nova) |
Invalid
|
Undecided
|
Unassigned | ||
OpenStack Object Storage (swift) |
Invalid
|
Wishlist
|
Unassigned |
Bug Description
Grant Murphy (<email address hidden>) conducted an audit of OpenStack and reported the following potential SQL injection vulnerabilities in Swift and Nova. These may well not be exploitable, we need to doublecheck them.
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
swift/swift/
nova/nova/
nova/nova/
nova/nova/
nova/nova/
nova/nova/
return "INSERT INTO %s %s" % (
Changed in nova: | |
status: | New → Incomplete |
status: | Incomplete → New |
Changed in ossa: | |
status: | New → Incomplete |
Changed in nova: | |
status: | New → Invalid |
Changed in swift: | |
status: | Confirmed → Invalid |
For Swift:
The calls listed are used specifically to make code reusable, and the variables are only set within the code, and are not derived from user input, and thus are not at risk for injection.