linux-distros - [vs-plain] Re: OpenStack Nova vulnerability (Tenant bypass by authenticated users using OpenStack API)

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [day] [month] [year] [list]

Message-Id: <20120105214825.A67CE71F0@h26.n170.cust.dataforce.net>
Date: Thu, 5 Jan 2012 21:49:22 +0000
From: Matt Tesauro <matt.tesauro@...KSPACE.COM>
To: Thierry Carrez <thierry@...nstack.org>,
 "linux-distros@...openwall.org"	<linux-distros@...openwall.org>,
 "diego.parrilla@...ckops.com"	<diego.parrilla@...ckops.com>,
 "ghe@...ian.org" <ghe@...ian.org>,
 Devin Carlen <Devin.Carlen@...ula.com>, Ewan Mellor
 <ewan.mellor@...citrix.com>,
 "security@...toncloud.com" <security@...toncloud.com>
CC: Jarret Raim <jarret.raim@...KSPACE.COM>,
 "Clark, Robert Graham"	<robert.clark@...com>,
 Mark McLoughlin <markmc@...hat.com>, Dave Walker
 <Dave.Walker@...onical.com>
Subject: [vs-plain] Re: OpenStack Nova vulnerability (Tenant bypass by
 authenticated users using OpenStack API)

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.