cinder 2:17.0.1-1+deb11u1 source package in Debian
Changelog
cinder (2:17.0.1-1+deb11u1) bullseye-security; urgency=high
* CVE-2022-47951: By supplying a specially created VMDK flat image which
references a specific backing file path, an authenticated user may convince
systems to return a copy of that file's contents from the server resulting
in unauthorized access to potentially sensitive data. Add upstream patch
cve-2022-47951-cinder-stable-victoria.patch (Closes: #1029562).
-- Thomas Goirand <email address hidden> Wed, 18 Jan 2023 09:06:59 +0100
Upload details
- Uploaded by:
- Debian OpenStack
- Uploaded to:
- Bullseye
- Original maintainer:
- Debian OpenStack
- Architectures:
- all
- Section:
- misc
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bullseye | release | main | misc |
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| cinder_17.0.1-1+deb11u1.dsc | 4.3 KiB | 99c03544f718fa3bfbace7933d3f48b57686b32055abdaad65ee7ec66ffa1857 |
| cinder_17.0.1.orig.tar.xz | 3.8 MiB | 9079a000149f68dea0e26e0f4387a6e67299492271479e4cce47ac96ce463f70 |
| cinder_17.0.1-1+deb11u1.debian.tar.xz | 48.5 KiB | ca459eeb760cb413279dd3c8072932eddb4caa6a3dc1ca760fb535309f784d7c |
No changes file available.
