<p>Upgrade <code>Debian:10</code> <code>glance</code> to version 2015.1.0-4 or higher.</p>

Resource Management Errors Affecting glance package, versions <2015.1.0-4

Snyk CVSS

Attack Complexity Low

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk ID SNYK-DEBIAN10-GLANCE-313312
published 14 Aug 2015
disclosed 14 Aug 2015

Report a new vulnerability Found a mistake?

Introduced: 14 Aug 2015

CVE-2015-3289 Open this link in a new tab CWE-399 Open this link in a new tab

How to fix?

Upgrade Debian:10 glance to version 2015.1.0-4 or higher.

NVD Description

Note: Versions mentioned in the description apply only to the upstream glance package and not the glance package as distributed by Debian:10. See How to fix? for Debian:10 relevant fixed versions and status.

OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated users to cause a denial of service (disk consumption) by repeatedly using the import task flow API to create images and then deleting them.

Resource Management Errors Affecting glance package, versions <2015.1.0-4

Snyk CVSS

Introduced: 14 Aug 2015

How to fix?

NVD Description

References