CVE - CVE-2014-9623

CVE-ID
CVE-2014-9623	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting an image in the saving state.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html CONFIRM:https://bugs.launchpad.net/glance/+bug/1383973 CONFIRM:https://bugs.launchpad.net/glance/+bug/1398830 CONFIRM:https://security.openstack.org/ossa/OSSA-2015-003.html MLIST:[oss-security] 20150118 Re: CVE request for vulnerability in OpenStack Glance URL:http://www.openwall.com/lists/oss-security/2015/01/18/4 REDHAT:RHSA-2015:0644 URL:http://rhn.redhat.com/errata/RHSA-2015-0644.html REDHAT:RHSA-2015:0837 URL:http://rhn.redhat.com/errata/RHSA-2015-0837.html REDHAT:RHSA-2015:0838 URL:http://rhn.redhat.com/errata/RHSA-2015-0838.html SECUNIA:62165 URL:http://secunia.com/advisories/62165
Assigning CNA
MITRE Corporation
Date Record Created
20150118	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20150118)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)