{"id":"USN-8199-1","summary":"glance vulnerabilities","details":"Martin Kaesberger discovered that OpenStack Glance's image processing could\nreturn the contents of arbitrary files. An attacker could possibly use this\nissue to exfiltrate sensitive data. This issue only affected Ubuntu 16.04\nLTS and Ubuntu 18.04 LTS. (CVE-2024-32498)\n\nHyeongeun Ji and Abhishek Kekane discovered several server-side request\nforgery vulnerabilities in OpenStack Glance's image import. An attacker\ncould possibly use this issue to bypass URL validation checks and redirect\nto internal services. This issue only affected Ubuntu 18.04 LTS and Ubuntu\n20.04 LTS. (CVE-2026-34881)","modified":"2026-04-27T19:02:42.596207866Z","published":"2026-04-22T18:04:46Z","related":["UBUNTU-CVE-2024-32498","UBUNTU-CVE-2026-34881"],"upstream":["CVE-2024-32498","CVE-2026-34881","UBUNTU-CVE-2024-32498","UBUNTU-CVE-2026-34881"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8199-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-32498"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-34881"}],"affected":[{"package":{"name":"glance","ecosystem":"Ubuntu:Pro:16.04:LTS","purl":"pkg:deb/ubuntu/glance@2:12.0.0-0ubuntu2+esm1?arch=source&distro=esm-infra/xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.0.0-0ubuntu2+esm1"}]}],"versions":["2:11.0.0-0ubuntu1","2:12.0.0~b1-0ubuntu1","2:12.0.0~b2-0ubuntu1","2:12.0.0~b3-0ubuntu1","2:12.0.0~rc1-0ubuntu1","2:12.0.0-0ubuntu1","2:12.0.0-0ubuntu2"],"ecosystem_specific":{"binaries":[{"binary_version":"2:12.0.0-0ubuntu2+esm1","binary_name":"glance"},{"binary_version":"2:12.0.0-0ubuntu2+esm1","binary_name":"glance-api"},{"binary_version":"2:12.0.0-0ubuntu2+esm1","binary_name":"glance-common"},{"binary_version":"2:12.0.0-0ubuntu2+esm1","binary_name":"glance-glare"},{"binary_version":"2:12.0.0-0ubuntu2+esm1","binary_name":"glance-registry"},{"binary_version":"2:12.0.0-0ubuntu2+esm1","binary_name":"python-glance"}],"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8199-1.json","cves_map":{"cves":[{"id":"CVE-2024-32498","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:Pro:16.04:LTS"}}},{"package":{"name":"glance","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/glance@2:16.0.1-0ubuntu1.1+esm2?arch=source&distro=esm-infra/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:16.0.1-0ubuntu1.1+esm2"}]}],"versions":["2:15.0.0-0ubuntu1","2:16.0.0~b2-0ubuntu2","2:16.0.0~rc1-0ubuntu1","2:16.0.0~rc2-0ubuntu1","2:16.0.0~rc3-0ubuntu1","2:16.0.0-0ubuntu1","2:16.0.1-0ubuntu1.1"],"ecosystem_specific":{"binaries":[{"binary_version":"2:16.0.1-0ubuntu1.1+esm2","binary_name":"glance"},{"binary_version":"2:16.0.1-0ubuntu1.1+esm2","binary_name":"glance-api"},{"binary_version":"2:16.0.1-0ubuntu1.1+esm2","binary_name":"glance-common"},{"binary_version":"2:16.0.1-0ubuntu1.1+esm2","binary_name":"glance-registry"},{"binary_version":"2:16.0.1-0ubuntu1.1+esm2","binary_name":"python-glance"}],"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8199-1.json","cves_map":{"cves":[{"id":"CVE-2024-32498","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2026-34881","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:Pro:18.04:LTS"}}},{"package":{"name":"glance","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/glance@2:20.2.0-0ubuntu1.2+esm2?arch=source&distro=esm-infra/focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:20.2.0-0ubuntu1.2+esm2"}]}],"versions":["2:19.0.0-0ubuntu1","2:20.0.0~b1~git2019121610.0c6dd98d-0ubuntu1","2:20.0.0~b2~git2020020509.8649fdc2-0ubuntu1","2:20.0.0~b3~git2020032414.30ece7aa-0ubuntu2","2:20.0.0~b3~git2020041012.d5a0ce18-0ubuntu1","2:20.0.0-0ubuntu0.20.04.1","2:20.0.1-0ubuntu1","2:20.1.0-0ubuntu1","2:20.2.0-0ubuntu1","2:20.2.0-0ubuntu1.1","2:20.2.0-0ubuntu1.2"],"ecosystem_specific":{"binaries":[{"binary_version":"2:20.2.0-0ubuntu1.2+esm2","binary_name":"glance"},{"binary_version":"2:20.2.0-0ubuntu1.2+esm2","binary_name":"glance-api"},{"binary_version":"2:20.2.0-0ubuntu1.2+esm2","binary_name":"glance-common"},{"binary_version":"2:20.2.0-0ubuntu1.2+esm2","binary_name":"python3-glance"}],"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8199-1.json","cves_map":{"cves":[{"id":"CVE-2026-34881","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:Pro:20.04:LTS"}}}],"schema_version":"1.7.5"}