Bug#799369: jessie-pu: package swift/2.2.0-1
Control: tags -1 -moreinfo +confirmed
On Fri, 2015-09-18 at 13:38 +0200, Thomas Goirand wrote:
+swift (2.2.0-1+deb8u1) jessie-proposed-updates; urgency=medium
+
+ [ Thomas Goirand ]
+ * Fixed swift user creation (standardized on pkgos way).
+ * CVE-2015-1856 & OSSA 2015-006: Unauthorized delete of versioned Swift
+ object. Applied upstream patch: Prevent unauthorized delete in versioned
+ container (Closes: #783163).
+
+ [ Ondřej Nový ]
+ * Fixed service name of object-expirer.
+ * Added container-sync init script.
+ * CVE-2015-5223: Information leak via Swift tempurls.
+ Applied upstream patch: Disallow unsafe tempurl operations to point
+ to unauthorized data (Closes: #797032).
Please go ahead.
Regards,
Adam
Reply to: