GHSA-5gp5-vxj6-4257, CVE-2022-4134
pypi/glance
Inclusion of Functionality from Untrusted Control Sphere
A flaw was found in openstack-glance. This issue could allow a remote, authenticated attacker to tamper with images, compromising the integrity of virtual machines created using these modified images.
All versions up to 25.1.0
Unfortunately, there is no solution available yet.
2023-03-16
source |