linux-distros - Re: [vs-plain] OpenStack Nova vulnerability (Tenant bypass by authenticated users using OpenStack API)

Date: Fri, 06 Jan 2012 13:14:30 -0600
From: Jamie Strandboge <jamie@...onical.com>
To: Vincent Danen <vdanen@...hat.com>, Thierry Carrez <thierry@...nstack.org>
CC: linux-distros@...openwall.org, diego.parrilla@...ckops.com,
 ghe@...ian.org,  Devin Carlen <Devin.Carlen@...ula.com>, Ewan Mellor
 <ewan.mellor@...citrix.com>, security@...toncloud.com,  Jarret Raim
 <jarret.raim@...KSPACE.COM>,
 "Clark, Robert Graham" <robert.clark@...com>,
 Mark McLoughlin <markmc@...hat.com>, Dave Walker
 <Dave.Walker@...onical.com>, Matt Tesauro <matt.tesauro@...KSPACE.COM>
Subject: Re: [vs-plain] OpenStack Nova vulnerability (Tenant bypass by
 authenticated users using OpenStack API)

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.