Comment 40 for bug 1784871

Please review this OSSA description for accuracy, as I do not have much ScaleIO expertise. I combined both the Thin/Thick volume bugs:

Title: Data is retained after deletion of a ScaleIO volume
Reporter: Martin Chlumsky/Eric Harney
Products: Cinder
Affects: <10.0.8, <11.1.1, <12.0.4

Description:
Martin Chlumsky/Eric Harney reported a vulnerability in Cinder, specifically with ScaleIO volumes.
When a ScaleIO (Thin or Thick) volume is deleted, the data is not cleared, and it is possible for a new volume to contain old tenant data that a new tenant would not have the authority to access. Only volumes utilizing the ScaleIO driver are affected.