Comment 6 for bug 1298698
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote Re: Remote Code Execution in Sheepdog backend | #6 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
@Paul McMillan I was able to reproduce this bug using location parameter but not with image id.
And for the affection version, the offending commit (1757e7e0) appeared in 2013.2.
Impact description draft #1:
Title: Remote code execution in Glance Sheepdog backend
Reporter: Paul McMillan (Nebula)
Products: Glance
Versions: 2013.2 versions up to 2013.2.2
Description:
Paul McMillan from Nebula reported a vulnerability in Glance Sheepdog backend. By using a specially crafted location, a user allowed to insert or modify a Glance image may trigger remote code execution resulting in Glance host unauthorized access. Only Glance setups featuring Sheepdog backend are affected. Note that it is enabled by default and should be removed from the known_stores list in glance-api.conf to be disabled.