[SECURITY] [DSA 6314-1] swift security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 6314-1] swift security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Sun, 31 May 2026 18:38:29 +0000
Message-id: <[🔎] ahyAJTRSXyJgDejh@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6314-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
May 31, 2026                          https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : swift
CVE ID         : CVE-2026-49017

Alistair Coles discovered that the s3api middleware of Swift, a
distributed virtual object store, was susceptible to denial of service.

The oldstable distribution (bookworm) is not affected.

For the stable distribution (trixie), this problem has been fixed in
version 2.35.1-0+deb13u2.

We recommend that you upgrade your swift packages.

For the detailed security status of swift please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/swift

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmocf/kACgkQEMKTtsN8
TjYzPxAApDqsqhPkoV6FCcNWt6pqsdZtS8dbxYSjra8o02/uEUtfDtvO0f3A1RL7
7l1qQ89J18ZCeFhMBNB2/wF2SVIHa4ZH8tM7NUzirwnYSPop/ulS/uGrXNvPlOOd
5LNFXGVGacj8CR15PIAVYNpuBCzeLnK3deZWHyQiOvoy0jeV6VyPIQ16GX6n1u2l
QN4MDqqUxXrVj+Vi0MwKunYqavmf2jMJyCikcxzEMXLrEzc11o+t3R/go40ppu7E
YFPSjjGi1L6tBwOE6RbZoor+jK/STKZhYwRn/D4d1qHoECbChGbnNJXk4Kis+SrL
y3KBz8cSIWPHie4vr19ymQ0RqQLHh6PrrekLlARBoCS7lk6j73lTi5EkXwpm7U3y
C2Nh69r3dfCr2P8ghYlD4NddZzpyGyt3PJiYG6OOetceDs97v1DvFwl83t4lUuLn
7889MBWmC5EBNq046NhF7Evoxy0dlvcjvT73qd5q4F9jxj4Ys6b7w71/B5jcogE0
5PE/zH7IYmqlXXJARHyXJTlnYg/q8J4mCu8xuTpkJkdoPbGk6HtsCt6MShTUya1+
dH1Af6ysG4wEP+5xiQW4ITmD19ryaNxnldxgE2f9YbKmICAjFYDK5hMv7M7UcXOI
FYawgEIqPyS0n0ld/7aorKpEaQgi729hIeoaIIRrTxShRyTNKuQ=
=QHr6
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 6313-1] dovecot security update
Next by Date: [SECURITY] [DSA 6315-1] cyborg security update
Previous by thread: [SECURITY] [DSA 6313-1] dovecot security update
Next by thread: [SECURITY] [DSA 6315-1] cyborg security update
Index(es):
- Date
- Thread