2326318 – (CVE-2024-1682) CVE-2024-1682 psf/requests: Unclaimed S3 Bucket Reference in psf/requests Documentation

Bug 2326318 (CVE-2024-1682) - CVE-2024-1682 psf/requests: Unclaimed S3 Bucket Reference in psf/requests Documentation

Summary: CVE-2024-1682 psf/requests: Unclaimed S3 Bucket Reference in psf/requests Doc...

Keywords:
Status:	NEW
Alias:	CVE-2024-1682
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2024-11-14 18:01 UTC by OSIDB Bzimport
Modified:	2025-06-17 08:29 UTC (History)
CC List:	20 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-11-14 18:01:59 UTC

An unclaimed Amazon S3 bucket, 'codeconf', is referenced in an audio file link within the .rst documentation file. This bucket has been claimed by an external party. The use of this unclaimed S3 bucket could lead to data integrity issues, data leakage, availability problems, loss of trustworthiness, and potential further attacks if the bucket is used to host malicious content or as a pivot point for further attacks.

Note You need to log in before you can comment on or make changes to this bug.

brking
haoli
hkataria
jajackso
jcammara
jmitchel
jneedle
kegrant
koliveir
kshier
mabashia
pbraun
shvarugh
simaishi
smcdonal
stcannon
teagle
tfister
thavo
yguenane