GCVE - cpe:2.3:a:openstack:image_registry_and_delivery_service

Approved changes feed: RSS · Atom

cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2014.2:*:*:*:*:*:*:*

part: a version: 2014.2 update: *

Vendor	Openstack (`7b0cf974-b2b5-592e-bdf4-6953805ef02a`)
Product	Image Registry And Delivery Service (Glance) (`08075d3f-d82e-57df-aa20-c356b48bf240`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2015-1881`	vulnerable	2026-06-03 14:34:40.356798	Details available OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not properly remove images, which allows remote authenticated users to cause a denial of service (disk consumption) by creating a large number of images using the task v2 API and then deleting them, a different vulnerability than CVE-2014-9684. Published: 2015-02-24T15:00:00.000Z Updated: 2024-08-06T04:54:16.396Z Open on db.gcve.eu Reference links http://lists.openstack.org/pipermail/openstack-announce/2015-February/000336.html http://rhn.redhat.com/errata/RHSA-2015-0938.html https://bugs.launchpad.net/glance/+bug/1420696 http://www.securityfocus.com/bid/72694	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-9684`	vulnerable	2026-06-03 14:34:27.684195	Details available OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not properly remove images, which allows remote authenticated users to cause a denial of service (disk consumption) by creating a large number of images using the task v2 API and then deleting them before the uploads finish, a different vulnerability than CVE-2015-1881. Published: 2015-02-24T15:00:00.000Z Updated: 2024-08-06T13:55:04.449Z Open on db.gcve.eu Reference links http://lists.openstack.org/pipermail/openstack-announce/2015-February/000336.html https://bugs.launchpad.net/glance/+bug/1371118 http://rhn.redhat.com/errata/RHSA-2015-0938.html http://www.securityfocus.com/bid/72692	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-9623`	vulnerable	2026-06-03 14:34:27.464677	Details available OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting an image in the saving state. Published: 2015-01-23T15:00:00.000Z Updated: 2024-08-06T13:47:41.740Z Open on db.gcve.eu Reference links http://rhn.redhat.com/errata/RHSA-2015-0838.html http://rhn.redhat.com/errata/RHSA-2015-0644.html http://secunia.com/advisories/62165 http://rhn.redhat.com/errata/RHSA-2015-0837.html http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

OpenStack Image Registry and Delivery Service (Glance) 2014.2

PURL mappings

Vulnerability references

Contribute