CVE-2013-0212

Publication date 29 January 2013

Last updated 24 July 2024

Ubuntu priority

store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) before 2012.2.3, and Grizzly, when in Swift single tenant mode, logs the Swift endpoint's user name and password in cleartext when the endpoint is misconfigured or unusable, allows remote authenticated users to obtain sensitive information by reading the error messages.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
glance	12.10 quantal	Fixed 2012.2.1-0ubuntu1.1
	12.04 LTS precise	Fixed 2012.1.3+stable~20120821-120fcf-0ubuntu1.3
	11.10 oneiric	Fixed 2011.3-0ubuntu4.2
	10.04 LTS lucid	Not in release
	8.04 LTS hardy	Not in release

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-1710-1
OpenStack Glance vulnerability
29 January 2013

Other references

https://www.cve.org/CVERecord?id=CVE-2013-0212