You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa openstack

Sigurnosni nedostatak programskog paketa openstack

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2015-07-29 21:42:30

Name : openstack-swift
Product : Fedora 22
Version : 2.2.0
Release : 5.fc22
Summary : OpenStack Object Storage (Swift)
Description :
OpenStack Object Storage (Swift) aggregates commodity servers to work together
in clusters for reliable, redundant, and large-scale storage of static objects.
Objects are written to multiple hardware devices in the data center, with the
OpenStack software responsible for ensuring data replication and integrity
across the cluster. Storage clusters can scale horizontally by adding new nodes,
which are automatically configured. Should a node fail, OpenStack works to
replicate its content from other active nodes. Because OpenStack uses software
logic to ensure data replication and distribution across different devices,
inexpensive commodity hard drives and servers can be used in lieu of more
expensive equipment.

Update Information:

This update fixes CVE-2015-1856, unauthorized deletion of versioned Swift object.

* Tue Jul 28 2015 Pete Zaitcev <> 2.2.0-5
– CVE-2015-1856, unauthorized deletion of versioned Swift object

[ 1 ] Bug #1246358 – CVE-2015-1856 openstack-swift: OpenStack Swift: unauthorized deletion of versioned Swift object [fedora-all]

This update can be installed with the “yum” update program. Use
su -c ‘yum update openstack-swift’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorMarko Stanec
Cert idNCERT-REF-2015-08-0013-ADV
More in Preporuke
Sigurnosni propust programskog paketa lighttpd

Otkriven je sigurnosni propust u programskom paketu lighttpd za operacijski sustav Fedora. Otkriveni propust potencijalnim napadačima omogućuje umetanje proizvoljnih log...