Inclusion of Functionality from Untrusted Control Sphere
A flaw was found in openstack-glance. This issue could allow a remote, authenticated attacker to tamper with images, compromising the integrity of virtual machines created using these modified images.
All versions up to 25.1.0
Unfortunately, there is no solution available yet.