Description: A flaw was found in the metadata constraints in gluster-swift package. By adding metadata in several separate calls, a malicious user could bypass the max_meta_count constraint, and store more metadata than allowed by the configuration. References: http://seclists.org/oss-sec/2015/q3/448 https://review.openstack.org/#/c/215487
This issue has been addressed in the following products: Red Hat Gluster Storage 3.1 for RHEL 6 Native Client for RHEL 6 for Red Hat Storage Via RHSA-2015:1845 https://rhn.redhat.com/errata/RHSA-2015-1845.html
This issue has been addressed in the following products: Red Hat Gluster Storage 3.1 for RHEL 7 Native Client for RHEL 7 for Red Hat Storage Via RHSA-2015:1846 https://rhn.redhat.com/errata/RHSA-2015-1846.html