Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:29966
HistoryOct 28, 2013 - 12:00 a.m.

[USN-2001-1] Swift vulnerability

2013-10-2800:00:00
vulners.com
28
JSON

==========================================================================
Ubuntu Security Notice USN-2001-1
October 23, 2013

swift vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 13.04
  • Ubuntu 12.10
  • Ubuntu 12.04 LTS

Summary:

Swift could cause the system to crash if it received specially crafted
requests over the network.

Software Description:

  • swift: OpenStack distributed virtual object store

Details:

Peter Portante discovered that Swift did not properly handle requests with
old X-Timestamp values. An authenticated attacker could exploit this to
cause a denial of service via disk consumption.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
python-swift 1.8.0-0ubuntu1.3

Ubuntu 12.10:
python-swift 1.7.4-0ubuntu2.3

Ubuntu 12.04 LTS:
python-swift 1.4.8-0ubuntu2.3

In general, a standard system update will make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2001-1
CVE-2013-4155

Package Information:
https://launchpad.net/ubuntu/+source/swift/1.8.0-0ubuntu1.3
https://launchpad.net/ubuntu/+source/swift/1.7.4-0ubuntu2.3
https://launchpad.net/ubuntu/+source/swift/1.4.8-0ubuntu2.3

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Related

fedora 1
veracode 1
ubuntu 1
nessus 3
openvas 6
ubuntucve 1
prion 1
seebug 1
debiancve 1
redhat 1
cve 1
osv 1
debian 1
securityvulns 2
fedora
fedora
[SECURITY] Fedora 19 Update: openstack-swift-1.8.0-3.fc19
2013-08-18 21:36:36
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:58:17
ubuntu
ubuntu
Swift vulnerability
2013-10-23 00:00:00
nessus
nessus
Ubuntu 12.04 LTS / 12.10 / 13.04 : swift vulnerability (USN-2001-1)
2013-10-24 00:00:00
Fedora 19 : openstack-swift-1.8.0-3.fc19 (2013-14477)
2013-08-20 00:00:00
Debian DSA-2737-1 : swift - several vulnerabilities
2013-08-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2001-1)
2013-10-29 00:00:00
Fedora Update for openstack-swift FEDORA-2013-14477
2013-08-20 00:00:00
Ubuntu Update for swift USN-2001-1
2013-10-29 00:00:00
ubuntucve
ubuntucve
CVE-2013-4155
2013-08-07 00:00:00
prion
prion
Design/Logic Flaw
2013-08-20 22:55:00
seebug
seebug
OpenStack Swift 远程拒绝服务漏洞(CVE-2013-4155)
2013-08-27 00:00:00
debiancve
debiancve
CVE-2013-4155
2013-08-20 22:55:00
redhat
redhat
(RHSA-2013:1197) Moderate: openstack-swift security update
2013-09-03 00:00:00
cve
cve
CVE-2013-4155
2013-08-20 22:55:00
osv
osv
swift - several
2013-08-12 00:00:00
debian
debian
[SECURITY] [DSA 2737-1] swift security update
2013-08-12 18:39:56
securityvulns
securityvulns
OpenStack multiple security vulnerabilities
2013-07-01 00:00:00
OpenStack multiple security vulnerabilities
2013-12-23 00:00:00
JSON
Related for SECURITYVULNS:DOC:29966
fedora1veracode1ubuntu1nessus3openvas6ubuntucve1prion1seebug1debiancve1redhat1cve1osv1debian1securityvulns2