Information on source package glance

Available versions

ReleaseVersion
jessie2014.1.3-12+deb8u1
stretch2:13.0.0-4
buster2:17.0.0-5+deb10u1
bullseye2:21.0.0-2+deb11u1
bullseye (security)2:21.1.0-1+deb11u2
bookworm2:25.1.0-2+deb12u1
trixie2:29.0.0-3
sid2:29.0.0-3

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-32498vulnerablevulnerablevulnerablefixedfixedfixedfixedAn issue was discovered in OpenStack Cinder through 24.0.0, Glance bef ...
CVE-2022-47951vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in OpenStack Cinder before 19.1.2, 20.x before ...
CVE-2022-4134vulnerablevulnerableunknownunknownunknownunknownunknownA flaw was found in openstack-glance. This issue could allow a remote, ...
CVE-2017-7200vulnerable (no DSA)fixedfixedfixedfixedfixedfixedAn SSRF issue was discovered in OpenStack Glance before Newton. The 'c ...
CVE-2016-0757vulnerable (no DSA)fixedfixedfixedfixedfixedfixedOpenStack Image Service (Glance) before 2015.1.3 (kilo) and 11.0.x bef ...
CVE-2015-5162vulnerable (no DSA)fixedfixedfixedfixedfixedfixedThe image parser in OpenStack Cinder 7.0.2 and 8.0.0 through 8.1.1; Gl ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2016-8611vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableA vulnerability was found in Openstack Glance. No limits are enforced ...
CVE-2016-4383vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThe glance-manage db in all versions of HPE Helion Openstack Glance al ...
CVE-2015-8234vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThe image signature algorithm in OpenStack Glance 11.0.0 allows remote ...
CVE-2013-4354vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThe API before 2.1 in OpenStack Image Registry and Delivery Service (G ...

Resolved issues

BugDescription
CVE-2015-5286OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x b ...
CVE-2015-5251OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x b ...
CVE-2015-5163The import task action in OpenStack Image Service (Glance) 2015.1.x be ...
CVE-2015-3289OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated us ...
CVE-2015-1881OpenStack Image Registry and Delivery Service (Glance) 2014.2 through ...
CVE-2015-1195The V2 API in OpenStack Image Registry and Delivery Service (Glance) b ...
CVE-2014-9684OpenStack Image Registry and Delivery Service (Glance) 2014.2 through ...
CVE-2014-9623OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allo ...
CVE-2014-9493The V2 API in OpenStack Image Registry and Delivery Service (Glance) b ...
CVE-2014-5356OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4 ...
CVE-2014-1948OpenStack Image Registry and Delivery Service (Glance) 2013.2 through ...
CVE-2014-0162The Sheepdog backend in OpenStack Image Registry and Delivery Service ...
CVE-2013-4428OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly ...
CVE-2013-1840The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Gr ...
CVE-2013-0212store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) bef ...
CVE-2012-5482The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (20 ...
CVE-2012-4573The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (20 ...

Security announcements

DSA / DLADescription
DLA-3872-1glance - security update
DSA-5755-1glance - security update
DSA-5336-1glance - security update
DLA-3300-1glance - security update

Search for package or bug name: Reporting problems