USN-5852-1

Source

https://ubuntu.com/security/notices/USN-5852-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-5852-1.json

Related

CVE-2022-47950

Published

2023-02-09T17:21:29.638329Z

Modified

2023-02-09T17:21:29.638329Z

Summary

swift vulnerability

Details

It was discovered that OpenStack Swift incorrectly handled certain XML files. A remote authenticated user could possibly use this issue to obtain arbitrary file contents containing sensitive information from the server.

References

Affected packages

Ubuntu:22.04:LTS / swift

Package

Name: swift

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

2.29.2-0ubuntu1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "swift-object": "2.29.2-0ubuntu1",
            "swift-proxy": "2.29.2-0ubuntu1",
            "swift-object-expirer": "2.29.2-0ubuntu1",
            "swift-container": "2.29.2-0ubuntu1",
            "swift-account": "2.29.2-0ubuntu1",
            "swift-doc": "2.29.2-0ubuntu1",
            "python3-swift": "2.29.2-0ubuntu1",
            "swift": "2.29.2-0ubuntu1"
        }
    ]
}

Ubuntu:20.04:LTS / swift

Package

Name: swift

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

2.25.2-0ubuntu1.1

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "swift-object": "2.25.2-0ubuntu1.1",
            "swift-proxy": "2.25.2-0ubuntu1.1",
            "swift-object-expirer": "2.25.2-0ubuntu1.1",
            "swift-container": "2.25.2-0ubuntu1.1",
            "swift-account": "2.25.2-0ubuntu1.1",
            "swift-doc": "2.25.2-0ubuntu1.1",
            "python3-swift": "2.25.2-0ubuntu1.1",
            "swift": "2.25.2-0ubuntu1.1"
        }
    ]
}