[Openstack-security] [openstack/glance] SecurityImpact review request change I4f7d1aa103f4ce7abf4026e7097b9e76c24135fa
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Fri Feb 20 09:16:39 UTC 2015
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/157067
Log:
commit a880c8e762e94b70c1e5d5692a3defcde734a601
Author: Mike Fedosin <mfedosin at mirantis.com>
Date: Thu Sep 18 18:07:42 2014 +0400
Initiate deletion of image files if the import was interrupted
If the image is deleted by appropriate API call while its content
is still being uploaded in import task in v2, an exception is raised
and it is not handled in the API code. This leads to the fact that
the uploaded image file stays in a storage and clogs it.
There existed code that safely removes image files if the exception
occurs.
SecurityImpact
Conflicts:
glance/common/scripts/image_import/main.py
Closes-Bug: 1371118
Change-Id: I4f7d1aa103f4ce7abf4026e7097b9e76c24135fa
(cherry picked from commit 7858d4d95154c8596720365e465cca7858cfec5c)
More information about the Openstack-security
mailing list