PYSEC-2013-35

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/cinder/PYSEC-2013-35.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2013-35
Aliases
Published
2013-09-16T19:14:00Z
Modified
2024-11-25T22:42:02.600942Z
Summary
[none]
Details

The clear_volume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through 2013.1.2 does not properly clear data when deleting a snapshot, which allows local users to obtain sensitive information via unspecified vectors.

References

Affected packages

PyPI / cinder

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.0a0