CVE-2014-0162

The Sheepdog backend in OpenStack Image Registry and Delivery Service (Glance) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote authenticated users with permission to insert or modify an image to execute arbitrary commands via a crafted location.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:openstack:icehouse:rc-1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2013.2:*:*:*:*:*:*:*
cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2013.2.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2013.2.2:*:*:*:*:*:*:*
cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2013.2.3:*:*:*:*:*:*:*

History

21 Nov 2024, 02:01

Type Values Removed Values Added
References () http://rhn.redhat.com/errata/RHSA-2014-0455.html - () http://rhn.redhat.com/errata/RHSA-2014-0455.html -
References () http://www.openwall.com/lists/oss-security/2014/04/10/13 - () http://www.openwall.com/lists/oss-security/2014/04/10/13 -
References () http://www.ubuntu.com/usn/USN-2193-1 - () http://www.ubuntu.com/usn/USN-2193-1 -
References () https://launchpad.net/bugs/1298698 - () https://launchpad.net/bugs/1298698 -

Information

Published : 2014-04-27 20:55

Updated : 2024-11-21 02:01


NVD link : CVE-2014-0162

Mitre link : CVE-2014-0162

CVE.ORG link : CVE-2014-0162


JSON object : View

Products Affected

openstack

  • icehouse
  • image_registry_and_delivery_service_\(glance\)
CWE
CWE-20

Improper Input Validation