Stay Secure with the Latest Linux Advisories

security advisoryFedorasecurity fix

Fedora 22 Security Advisory: OpenStack Swift Unauthorized Deletion Fix

This update fixes CVE-2015-1856, unauthorized deletion of versioned Swift object.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-12245 2015-07-29 21:42:30 -------------------------------------------------------------------------------- Name : openstack-swift Product : Fedora 22 Version : 2.2.0 Release : 5.fc22 URL : https://launchpad.net/swift Summary : OpenStack Object Storage (Swift) Description : OpenStack Object Storage (Swift) aggregates commodity servers to work together in clusters for reliable, redundant, and large-scale storage of static objects. Objects are written to multiple hardware devices in the data center, with the OpenStack software responsible for ensuring data replication and integrity across the cluster. Storage clusters can scale horizontally by adding new nodes, which are automatically configured. Should a node fail, OpenStack works to replicate its content from other active nodes. Because OpenStack uses software logic to ensure data replication and distribution across different devices, inexpensive commodity hard drives and servers can be used in lieu of more expensive equipment. -------------------------------------------------------------------------------- Update Information: This update fixes CVE-2015-1856, unauthorized deletion of versioned Swift object. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 28 2015 Pete Zaitcev 2.2.0-5 - CVE-2015-1856, unauthorized deletion of versioned Swift object -------------------------------------------------------------------------------- References: [ 1 ] Bug #1246358 - CVE-2015-1856 openstack-swift: OpenStack Swift: unauthorized deletion of versioned Swift object [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1246358 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update openstack-swift' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Addresses the issue of improper removal of version-controlled OpenStack Swift objects in Fedora. Discover the specifics of this security patch.. Fedora Security Advisory, OpenStack Swift Update, Object Storage Fix. . Severity: Critical. LinuxSecurity.com Team

Aug 07, 2015 •Critical Fedora