CVE-2013-4155: OpenStack Swift allows authenticated users to cause a denial of service
(updated )
OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service (“superfluous” tombstone consumption and Swift cluster slowdown) via a DELETE request with a timestamp that is older than expected.
References
- bugs.launchpad.net/swift/+bug/1196932
- github.com/advisories/GHSA-wxx2-gqvv-34hx
- github.com/openstack/swift
- github.com/openstack/swift/commit/1f4ec235cdfd8c868f2d6458532f9dc32c00b8ca
- github.com/openstack/swift/commit/6b9806e0e8cbec60c0a3ece0bd516e0502827515
- nvd.nist.gov/vuln/detail/CVE-2013-4155
- review.openstack.org/
- review.openstack.org/
- review.openstack.org/
Detect and mitigate CVE-2013-4155 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →