Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

python-glanceclient vulnerability

Related Vulnerabilities: CVE-2013-4111  

python-glanceclient could be made to expose sensitive information over the network.

Thomas Leaman discovered that the Python client library for Glance did not properly verify SSL certificates. A remote attacker could exploit this to perform a man in the middle attack.

Source

23 October 2013

python-glanceclient vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 13.04

Summary

python-glanceclient could be made to expose sensitive information over the network.

Software Description

  • python-glanceclient - Client library for Openstack glance server.

Details

Thomas Leaman discovered that the Python client library for Glance did not properly verify SSL certificates. A remote attacker could exploit this to perform a man in the middle attack.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 13.04
python-glanceclient - 1:0.9.0-0ubuntu1.2

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook
Vulmon Logo
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started