OpenStack Object Storage (swift)

  1. Series havana
  2. Bug #1265665
  3. Activity log

Activity log for bug #1265665

Date Who What changed Old value New value Message
2014-01-02 23:58:45 Samuel Merritt bug added bug
2014-01-02 23:58:45 Samuel Merritt attachment added Use streq_const_time for hash comparison https://bugs.launchpad.net/bugs/1265665/+attachment/3939449/+files/constant-time.diff
2014-01-03 00:32:35 Jeremy Stanley bug task added ossa
2014-01-03 15:53:27 Thierry Carrez nominated for series swift/grizzly
2014-01-03 15:53:27 Thierry Carrez bug task added swift/grizzly
2014-01-03 15:53:27 Thierry Carrez nominated for series swift/havana
2014-01-03 15:53:27 Thierry Carrez bug task added swift/havana
2014-01-03 15:53:40 Thierry Carrez ossa: status New Confirmed
2014-01-03 15:58:19 Thierry Carrez ossa: importance Undecided Medium
2014-01-03 19:19:02 Samuel Merritt attachment added 1.10.0-patch.diff https://bugs.launchpad.net/swift/+bug/1265665/+attachment/3939958/+files/1.10.0-patch.diff
2014-01-03 19:22:21 Samuel Merritt attachment added 1.8.0-patch.diff https://bugs.launchpad.net/swift/+bug/1265665/+attachment/3939960/+files/1.8.0-patch.diff
2014-01-06 13:37:17 Thierry Carrez swift: status New In Progress
2014-01-06 13:37:19 Thierry Carrez swift/grizzly: status New In Progress
2014-01-06 13:37:21 Thierry Carrez swift/havana: status New In Progress
2014-01-06 13:45:20 Thierry Carrez ossa: status Confirmed Triaged
2014-01-06 13:45:23 Thierry Carrez ossa: assignee Thierry Carrez (ttx)
2014-01-09 10:35:52 Thierry Carrez ossa: status Triaged In Progress
2014-01-10 08:57:20 Thierry Carrez cve linked 2014-0006
2014-01-10 08:57:30 Thierry Carrez summary Possible timing attack against tempurl Possible timing attack against tempurl (CVE-2014-0006)
2014-01-10 15:20:36 Thierry Carrez ossa: status In Progress Fix Committed
2014-01-16 12:37:19 Thierry Carrez swift: milestone 1.12.0
2014-01-16 15:00:22 Thierry Carrez information type Private Security Public Security
2014-01-17 04:40:07 OpenStack Infra swift: status In Progress Fix Committed
2014-01-17 09:55:22 Thierry Carrez summary Possible timing attack against tempurl (CVE-2014-0006) [OSSA 2014-002] Possible timing attack against tempurl (CVE-2014-0006)
2014-01-22 15:22:21 Thierry Carrez swift: status Fix Committed Fix Released
2014-01-25 12:21:05 OpenStack Infra swift/havana: status In Progress Fix Committed
2014-01-25 12:21:12 OpenStack Infra swift/grizzly: status In Progress Fix Committed
2014-01-27 10:59:22 Thierry Carrez ossa: status Fix Committed Fix Released