| Release | Version |
|---|---|
| jessie | 2014.1.3-12+deb8u1 |
| stretch | 2:13.0.0-4 |
| buster | 2:17.0.0-5+deb10u1 |
| bullseye | 2:21.0.0-2+deb11u1 |
| bullseye (security) | 2:21.1.0-1+deb11u2 |
| bookworm | 2:25.1.0-2+deb12u1 |
| trixie | 2:29.0.0-1 |
| sid | 2:29.0.0-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-32498 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | An issue was discovered in OpenStack Cinder through 24.0.0, Glance bef ... |
| CVE-2022-47951 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | An issue was discovered in OpenStack Cinder before 19.1.2, 20.x before ... |
| CVE-2022-4134 | vulnerable | vulnerable | unknown | unknown | unknown | unknown | unknown | A flaw was found in openstack-glance. This issue could allow a remote, ... |
| CVE-2017-7200 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | An SSRF issue was discovered in OpenStack Glance before Newton. The 'c ... |
| CVE-2016-0757 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | OpenStack Image Service (Glance) before 2015.1.3 (kilo) and 11.0.x bef ... |
| CVE-2015-5162 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | The image parser in OpenStack Cinder 7.0.2 and 8.0.0 through 8.1.1; Gl ... |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-8611 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A vulnerability was found in Openstack Glance. No limits are enforced ... |
| CVE-2016-4383 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | The glance-manage db in all versions of HPE Helion Openstack Glance al ... |
| CVE-2015-8234 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | The image signature algorithm in OpenStack Glance 11.0.0 allows remote ... |
| CVE-2013-4354 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | The API before 2.1 in OpenStack Image Registry and Delivery Service (G ... |
| Bug | Description |
|---|---|
| CVE-2015-5286 | OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x b ... |
| CVE-2015-5251 | OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x b ... |
| CVE-2015-5163 | The import task action in OpenStack Image Service (Glance) 2015.1.x be ... |
| CVE-2015-3289 | OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated us ... |
| CVE-2015-1881 | OpenStack Image Registry and Delivery Service (Glance) 2014.2 through ... |
| CVE-2015-1195 | The V2 API in OpenStack Image Registry and Delivery Service (Glance) b ... |
| CVE-2014-9684 | OpenStack Image Registry and Delivery Service (Glance) 2014.2 through ... |
| CVE-2014-9623 | OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allo ... |
| CVE-2014-9493 | The V2 API in OpenStack Image Registry and Delivery Service (Glance) b ... |
| CVE-2014-5356 | OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4 ... |
| CVE-2014-1948 | OpenStack Image Registry and Delivery Service (Glance) 2013.2 through ... |
| CVE-2014-0162 | The Sheepdog backend in OpenStack Image Registry and Delivery Service ... |
| CVE-2013-4428 | OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly ... |
| CVE-2013-1840 | The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Gr ... |
| CVE-2013-0212 | store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) bef ... |
| CVE-2012-5482 | The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (20 ... |
| CVE-2012-4573 | The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (20 ... |
| DSA / DLA | Description |
|---|---|
| DLA-3872-1 | glance - security update |
| DSA-5755-1 | glance - security update |
| DSA-5336-1 | glance - security update |
| DLA-3300-1 | glance - security update |