CVE | Description | Fixed in Arno | Fixed in Brahmaputra |
---|---|---|---|
CVE-2015-7546 | |||
CVE-2015-8234 | |||
CVE-2015-8466 | |||
CVE-2015-7713 |
https://blueprints.launchpad.net/glance/+spec/image-signing-and-verification-support
OpenStack currently does not support the following feature:
Deploying authentication will protect image integrity by verifying that an image has not been modified after the upload by the user. This feature improves the enterprise-ready posture of OpenStack. For further info read here.