A DoS vulnerability in openstack-swift was reported. By repeatedly requesting and interrupting connections to a Large Object (Dynamic or Static) URL, a remote attacker may exhausts Swift proxy-server resources, potentially resulting in a denial of service. Affects versions: >=2.2.1 <= 2.3.0 Upstream patch: https://review.openstack.org/#/c/217750/ There are similar bugs CVE-2016-0737 and CVE-2016-0738. This (CVE-2016-0737) is for client to proxy connection.
Created openstack-swift tracking bugs for this issue: Affects: fedora-all [bug 1300608]
This issue is now public.
This issue has been addressed in the following products: OpenStack 6 for RHEL 7 Via RHSA-2016:0128 https://rhn.redhat.com/errata/RHSA-2016-0128.html
This issue has been addressed in the following products: OpenStack 5 for RHEL 7 Via RHSA-2016:0127 https://rhn.redhat.com/errata/RHSA-2016-0127.html
This issue has been addressed in the following products: OpenStack 5 for RHEL 6 Via RHSA-2016:0126 https://rhn.redhat.com/errata/RHSA-2016-0126.html
This issue has been addressed in the following products: OpenStack 7 For RHEL 7 Via RHSA-2016:0155 https://rhn.redhat.com/errata/RHSA-2016-0155.html
This issue has been addressed in the following products: Red Hat Gluster Storage 3.1 for RHEL 6 Via RHSA-2016:0329 https://rhn.redhat.com/errata/RHSA-2016-0329.html
This issue has been addressed in the following products: Red Hat Gluster Storage 3.1 for RHEL 7 Via RHSA-2016:0328 https://rhn.redhat.com/errata/RHSA-2016-0328.html