[Openstack-security] [Bug 1514396] Re: cinder backup-list is always listing all tenants's bug for admin in V1 api

Steve Martinelli 1514396 at bugs.launchpad.net
Sun Nov 13 03:21:40 UTC 2016 

As far as i can tell, this was fixed by bug 1422046, and new versions of
cinderclient should fix this in ospurge

** Changed in: ospurge
       Status: Confirmed => Invalid

-- 
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1514396

Title:
  cinder backup-list is always listing all tenants's bug for admin in V1
  api

Status in ospurge:
  Invalid
Status in OpenStack Security Advisory:
  Won't Fix
Status in python-cinderclient:
  Fix Released

Bug description:
  https://bugs.launchpad.net/python-cinderclient/+bug/1422046 has been
  fixed for V2 only

  This is a security issue cause it leads to deleting all production
  backups when logged as admin

To manage notifications about this bug go to:
https://bugs.launchpad.net/ospurge/+bug/1514396/+subscriptions

More information about the Openstack-security mailing list