UBUNTU-CVE-2026-34881

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2026-34881

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-34881.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-34881

Upstream

CVE-2026-34881

Published

2026-03-31T06:16:00Z

Modified

2026-04-13T12:53:25.065777Z

Severity

5.0 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

OpenStack Glance before 29.1.1, 30.x before 30.1.1, and 31.0.0 is affected by Server-Side Request Forgery (SSRF). By use of HTTP redirects, an authenticated user can bypass URL validation checks and redirect to internal services. Only glance image import functionality is affected. In particular, the web-download and glance-download import methods are subject to this vulnerability, as is the optional (not enabled by default) ovf_process image import plugin.

References

Affected packages

Ubuntu:16.04:LTS

glance

Package

Name: glance
Purl: pkg:deb/ubuntu/glance@2:12.0.0-0ubuntu2?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:11.*

2:11.0.0-0ubuntu1

2:12.*

2:12.0.0~b1-0ubuntu1

2:12.0.0~b2-0ubuntu1

2:12.0.0~b3-0ubuntu1

2:12.0.0~rc1-0ubuntu1

2:12.0.0-0ubuntu1

2:12.0.0-0ubuntu2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2:12.0.0-0ubuntu2",
            "binary_name": "glance"
        },
        {
            "binary_version": "2:12.0.0-0ubuntu2",
            "binary_name": "glance-api"
        },
        {
            "binary_version": "2:12.0.0-0ubuntu2",
            "binary_name": "glance-common"
        },
        {
            "binary_version": "2:12.0.0-0ubuntu2",
            "binary_name": "glance-glare"
        },
        {
            "binary_version": "2:12.0.0-0ubuntu2",
            "binary_name": "glance-registry"
        },
        {
            "binary_version": "2:12.0.0-0ubuntu2",
            "binary_name": "python-glance"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-34881.json"

Ubuntu:18.04:LTS

glance

Package

Name: glance
Purl: pkg:deb/ubuntu/glance@2:16.0.1-0ubuntu1.1?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:15.*

2:15.0.0-0ubuntu1

2:16.*

2:16.0.0~b2-0ubuntu2

2:16.0.0~rc1-0ubuntu1

2:16.0.0~rc2-0ubuntu1

2:16.0.0~rc3-0ubuntu1

2:16.0.0-0ubuntu1

2:16.0.1-0ubuntu1.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2:16.0.1-0ubuntu1.1",
            "binary_name": "glance"
        },
        {
            "binary_version": "2:16.0.1-0ubuntu1.1",
            "binary_name": "glance-api"
        },
        {
            "binary_version": "2:16.0.1-0ubuntu1.1",
            "binary_name": "glance-common"
        },
        {
            "binary_version": "2:16.0.1-0ubuntu1.1",
            "binary_name": "glance-registry"
        },
        {
            "binary_version": "2:16.0.1-0ubuntu1.1",
            "binary_name": "python-glance"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-34881.json"

Ubuntu:20.04:LTS

glance

Package

Name: glance
Purl: pkg:deb/ubuntu/glance@2:20.2.0-0ubuntu1.2?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:19.*

2:19.0.0-0ubuntu1

2:20.*

2:20.0.0~b1~git2019121610.0c6dd98d-0ubuntu1

2:20.0.0~b2~git2020020509.8649fdc2-0ubuntu1

2:20.0.0~b3~git2020032414.30ece7aa-0ubuntu2

2:20.0.0~b3~git2020041012.d5a0ce18-0ubuntu1

2:20.0.0-0ubuntu0.20.04.1

2:20.0.1-0ubuntu1

2:20.1.0-0ubuntu1

2:20.2.0-0ubuntu1

2:20.2.0-0ubuntu1.1

2:20.2.0-0ubuntu1.2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2:20.2.0-0ubuntu1.2",
            "binary_name": "glance"
        },
        {
            "binary_version": "2:20.2.0-0ubuntu1.2",
            "binary_name": "glance-api"
        },
        {
            "binary_version": "2:20.2.0-0ubuntu1.2",
            "binary_name": "glance-common"
        },
        {
            "binary_version": "2:20.2.0-0ubuntu1.2",
            "binary_name": "python3-glance"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-34881.json"

Ubuntu:22.04:LTS

glance

Package

Name: glance
Purl: pkg:deb/ubuntu/glance@2:24.2.1-0ubuntu1.4?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:23.*

2:23.0.0-0ubuntu1

2:23.0.0+git2021120811.4ee7799aa-0ubuntu1

2:23.0.0+git2022011216.502fa0ffc-0ubuntu1

2:24.*

2:24.0.0~rc1+git2022030311.d4119be05-0ubuntu1

2:24.0.0-0ubuntu1

2:24.1.0-0ubuntu1

2:24.1.0-0ubuntu1.1

2:24.2.0-0ubuntu1

2:24.2.1-0ubuntu1

2:24.2.1-0ubuntu1.2

2:24.2.1-0ubuntu1.4

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2:24.2.1-0ubuntu1.4",
            "binary_name": "glance"
        },
        {
            "binary_version": "2:24.2.1-0ubuntu1.4",
            "binary_name": "glance-api"
        },
        {
            "binary_version": "2:24.2.1-0ubuntu1.4",
            "binary_name": "glance-common"
        },
        {
            "binary_version": "2:24.2.1-0ubuntu1.4",
            "binary_name": "python3-glance"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-34881.json"

Ubuntu:24.04:LTS

glance

Package

Name: glance
Purl: pkg:deb/ubuntu/glance@2:28.1.0-0ubuntu1.2?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:27.*

2:27.0.0-0ubuntu1

2:28.*

2:28.0.0~b2+git2024011916.f429b53e-0ubuntu1

2:28.0.0~rc1-0ubuntu1

2:28.0.1-0ubuntu1

2:28.0.1-0ubuntu1.2

2:28.1.0-0ubuntu1

2:28.1.0-0ubuntu1.2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2:28.1.0-0ubuntu1.2",
            "binary_name": "glance"
        },
        {
            "binary_version": "2:28.1.0-0ubuntu1.2",
            "binary_name": "glance-api"
        },
        {
            "binary_version": "2:28.1.0-0ubuntu1.2",
            "binary_name": "glance-common"
        },
        {
            "binary_version": "2:28.1.0-0ubuntu1.2",
            "binary_name": "python3-glance"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-34881.json"

Ubuntu:25.10

glance

Package

Name: glance
Purl: pkg:deb/ubuntu/glance@2:31.0.0-0ubuntu1.2?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:30.*

2:30.0.0-0ubuntu1

2:30.0.0+git2025070714.9b2cd1634-0ubuntu1

2:31.*

2:31.0.0~rc1-0ubuntu1

2:31.0.0-0ubuntu1

2:31.0.0-0ubuntu1.2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "2:31.0.0-0ubuntu1.2",
            "binary_name": "glance"
        },
        {
            "binary_version": "2:31.0.0-0ubuntu1.2",
            "binary_name": "glance-api"
        },
        {
            "binary_version": "2:31.0.0-0ubuntu1.2",
            "binary_name": "glance-common"
        },
        {
            "binary_version": "2:31.0.0-0ubuntu1.2",
            "binary_name": "python3-glance"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-34881.json"