Format: 1.8
Date: Wed, 22 Jul 2015 11:03:05 -0400
Source: swift
Binary: python-swift swift swift-proxy swift-object-expirer swift-object swift-container swift-account swift-doc
Architecture: source
Version: 1.13.1-0ubuntu1.2
Distribution: trusty-security
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 python-swift - distributed virtual object store - Python libraries
 swift      - distributed virtual object store - common files
 swift-account - distributed virtual object store - account server
 swift-container - distributed virtual object store - container server
 swift-doc  - distributed virtual object store - documentation
 swift-object - distributed virtual object store - object server
 swift-object-expirer - distributed virtual object store - object expirer
 swift-proxy - distributed virtual object store - proxy server
Changes: 
 swift (1.13.1-0ubuntu1.2) trusty-security; urgency=medium
 .
   * SECURITY UPDATE: metadata constraint bypass via multiple requests
     - debian/patches/CVE-2014-7960.patch: add metadata checks to
       swift/account/server.py, swift/common/constraints.py,
       swift/common/db.py, swift/container/server.py, added tests to
       test/functional/test_account.py, test/functional/test_container.py,
       test/unit/common/test_db.py.
     - CVE-2014-7960
   * SECURITY UPDATE: object deletion via x-versions-location container
     - debian/patches/CVE-2015-1856.patch: prevent unauthorized delete in
       swift/proxy/controllers/obj.py, added tests to
       test/functional/tests.py, test/unit/proxy/test_server.py.
     - CVE-2015-1856
Checksums-Sha1: 
 43f621c66a432aa37b51292156033ddaed76ccd0 2790 swift_1.13.1-0ubuntu1.2.dsc
 18c7dc72a8cb75df306509989725a77e441cc9a5 28542 swift_1.13.1-0ubuntu1.2.debian.tar.gz
Checksums-Sha256: 
 7d883b413f550bf4d4cabe581b2335a35046a87c53aa149fa8b600247253de02 2790 swift_1.13.1-0ubuntu1.2.dsc
 74aef2502060850a0ecc50aba1d3e7f67e60f93bf2935be2d459c742e1af9408 28542 swift_1.13.1-0ubuntu1.2.debian.tar.gz
Files: 
 2aa26eca1f7607b178f5300587b5a635 2790 net optional swift_1.13.1-0ubuntu1.2.dsc
 4d586fe4aef8cf74c25d607939b3b8ff 28542 net optional swift_1.13.1-0ubuntu1.2.debian.tar.gz
Original-Maintainer: Soren Hansen <soren@ubuntu.com>