[Openstack-security] [openstack/glance] SecurityImpact review request change Ieb03aaba887492819f9c58aa67f7acfcea81720e
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Wed Feb 3 15:00:34 UTC 2016
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/275735
Log:
commit 8edaead433eb20574a01c32b6d961d8b4cbfb009
Author: Erno Kuvaja <jokke at usr.fi>
Date: Tue Jan 19 13:37:05 2016 +0000
Prevent user to remove last location of the image
If the last location of the image is removed, image transitions back to queued.
This allows user to upload new data into the existing image record. By
preventing removal of the last location we prevent the image transition back to
queued.
This change also prevents doing the same operation via replacing the locations
with empty list.
SecurityImpact
DocImpact
APIImpact
Conflicts:
glance/tests/unit/v2/test_images_resource.py
Conflicts:
glance/api/v2/images.py
Change-Id: Ieb03aaba887492819f9c58aa67f7acfcea81720e
Closes-Bug: #1525915
(cherry picked from commit e9e45baa9aaf58e69964419b6b4fb2048d115a0c)
More information about the Openstack-security
mailing list