Your message dated Fri, 14 Feb 2014 03:49:42 +0000
with message-id <[email protected]>
and subject line Bug#738924: fixed in glance 2013.2.2-1
has caused the Debian Bug report #738924,
regarding glance: CVE-2014-1948: Swift store backend password leak
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
738924: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=738924
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: glance
Severity: important
Tags: security upstream
Hi,
the following vulnerability was published for glance.
CVE-2014-1948[0]:
Swift store backend password leak
See [1] and [2] for further details.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1948
http://security-tracker.debian.org/tracker/CVE-2014-1948
[1] https://bugs.launchpad.net/glance/+bug/1275062
[2]
https://git.openstack.org/cgit/openstack/glance/commit/?id=108f0e04ad2ed3dc287f1b71b987a7e9d66072ba
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: glance
Source-Version: 2013.2.2-1
We believe that the bug you reported is fixed in the latest version of
glance, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Thomas Goirand <[email protected]> (supplier of updated glance package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 14 Feb 2014 11:19:32 +0800
Source: glance
Binary: python-glance glance python-glance-doc glance-common glance-api
glance-registry
Architecture: source all
Version: 2013.2.2-1
Distribution: unstable
Urgency: medium
Maintainer: PKG OpenStack <[email protected]>
Changed-By: Thomas Goirand <[email protected]>
Description:
glance - OpenStack Image Service - metapackage
glance-api - OpenStack Image Service - API server
glance-common - OpenStack Image Service - common files
glance-registry - OpenStack Image Service - registry server
python-glance - OpenStack Image Service - Python client library
python-glance-doc - OpenStack Image Service - Python library documentation
Closes: 738924
Changes:
glance (2013.2.2-1) unstable; urgency=medium
.
* New upstream point release (Closes: #738924).
* Refreshed patches.
Checksums-Sha1:
f3cc52c56009aa017a84aba79af38316c0d32b77 3443 glance_2013.2.2-1.dsc
bb0fcade067de17a83e1e47243e7102ba0c2ccae 354644 glance_2013.2.2.orig.tar.xz
f3d41b37efacef2402dcc194b1a5430582251c10 195844 glance_2013.2.2-1.debian.tar.xz
40241ddc88e573331abb0e45618b383118033a0c 546004
python-glance_2013.2.2-1_all.deb
b97d307b613de06b89d54da3ba4898cc8709793f 212730 glance_2013.2.2-1_all.deb
a776b8f3487c947636cca15829c07d12e723309a 285716
python-glance-doc_2013.2.2-1_all.deb
1438309a56ec3ccaf038ebec9a5dd4460ade9f2d 237378
glance-common_2013.2.2-1_all.deb
77b96a97f48815dc4063942d3b821931f07087d5 235056 glance-api_2013.2.2-1_all.deb
b6822b85c782ab58f7272dd1b63420f2f9625a55 215470
glance-registry_2013.2.2-1_all.deb
Checksums-Sha256:
79e6cf5b81eca747126c2c69e28c7e3313aa6e0a1d537d49b0bb861cc8347028 3443
glance_2013.2.2-1.dsc
ba37047a137e9fa08eb5cdd318c13768e4dd35abb5b13eda0128d583dee994f1 354644
glance_2013.2.2.orig.tar.xz
f40e81a3cf630899cd3f09de636e679695b9a334f67083df6110acb021280410 195844
glance_2013.2.2-1.debian.tar.xz
b6ff4708def51b74ec3f2521f2c43437918ddd4230750244efad9809bc56dad3 546004
python-glance_2013.2.2-1_all.deb
928510384c3d10555e554096be394f674bee75f67b233ab7d45dd184baff2333 212730
glance_2013.2.2-1_all.deb
ad36ee17a973dcbaecddf8168f580ccd2317bf8fe4db99bc667b17f1930ac5cb 285716
python-glance-doc_2013.2.2-1_all.deb
515a6b2aba147bd44f41b61e0bd6a2b5c0802a8679507a8f6801d1cf176d661d 237378
glance-common_2013.2.2-1_all.deb
53a8fc36c1eaaf0c6c53118f9e0075dddeaa78da8048e0a900de507968de7d4a 235056
glance-api_2013.2.2-1_all.deb
040ccb4e2629716186f5d3d641dda522e9de93832f1ab1219f01ce7ca0937ea7 215470
glance-registry_2013.2.2-1_all.deb
Files:
0685f0b79e5a21b5d687887c5d902866 3443 net extra glance_2013.2.2-1.dsc
b263e05a09c49acfb32a914932e3b95e 354644 net extra glance_2013.2.2.orig.tar.xz
6d021a12ec7e8a51b7ab3d9193c6cb2b 195844 net extra
glance_2013.2.2-1.debian.tar.xz
17792c9534b60d311b0cc245e9475acb 546004 python extra
python-glance_2013.2.2-1_all.deb
4b6778ba978d505a7c6d6369df004f86 212730 python extra glance_2013.2.2-1_all.deb
8241e75b9e6bda086ac44dd462361f09 285716 doc extra
python-glance-doc_2013.2.2-1_all.deb
e5ffff1ffab07075090b8e60db36f841 237378 python extra
glance-common_2013.2.2-1_all.deb
baaa64ae84052c7c6b3555456d125fbe 235056 python extra
glance-api_2013.2.2-1_all.deb
f1669521240c76448fb8d5e9fd6238ce 215470 python extra
glance-registry_2013.2.2-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAEBCAAGBQJS/ZCKAAoJENQWrRWsa0P+NZEP/RoJmWpqfcFhm5BXT73wq8P2
INFXGVKiGWFsAS1rw8Z2bLpdfzC7GBZRkuIcftNwW2lc7frOVz932VeHFrbR82zE
3mNqMwAR3J6kWiXu2szr/6a49O2DGnspbVQab08rgpcRCavHzvGnJxGNd9fNeZ0Y
fQJMLPHGUiGvjIAQb5DDLX10drz+UR0gHJmU0R2Q1SOPY5XSV6QeQ8+ZYhOKjdSD
xVTorxxbM/h5GuGNeRRqkbiGwMtFFWAl9QvJMF78FPJ1ipTY4NlSMwsbFNFrXZdW
CZTZt0jGgs8Dt9EZzDneSSMixNdk6wuoDlHKWL/6yXoZ6rMCVIRmXz2/jBeuoCw7
kShiw00Q+Pn+wgwcxs/H83861CRAgWnKySj83UCSeJ0cIBhwqhl1XG/dkC8Z03IX
hu+lvGIzIHyYVfqyShixrEBOwNz0QsIJAKKMhtUdZCz95t9RvHgjfKM69lqCDLPQ
Uzl39w3XJSycbJlS3dp/tTOpbp96+n5yhLvgk6Czmh3rtPLiZFcaaLZM6a5yZGY9
mKWDtsbixZpzy7NfpBnRzUg3c69T4n0S2HuHgMBWKQUni3MwCOTNYTtTvfLJM8bs
6IPdwarToHTgvQyOmW7BqwtfVVKiTugpx/HSp0Ji6MtwloEXbRdTeBAtq8B2i2y3
TettqLaNpw8ZYKQ7lNf6
=femK
-----END PGP SIGNATURE-----
--- End Message ---
