VulnerableCode Package Details - pkg:deb/debian/python-glance-store@4.1.0-4?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/python-glance-store@4.1.0-4?distro=trixie

Essentials
History (2)

purl	pkg:deb/debian/python-glance-store@4.1.0-4?distro=trixie

Next non-vulnerable version	4.7.0-2
Latest non-vulnerable version	5.4.0-4
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-usrx-rfua-vfah Aliases: CVE-2024-1141 GHSA-wgpq-p2hm-56v9	glance-store logs s3 access keys A vulnerability was found in python-glance-store. The issue occurs when the package logs the access_key for the glance-store when the DEBUG log level is enabled.	4.7.0-2 Affected by 0 other vulnerabilities. 4.9.1-2 Affected by 0 other vulnerabilities. 5.4.0-4 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-usrx-rfua-vfah
Aliases:
CVE-2024-1141
GHSA-wgpq-p2hm-56v9

glance-store logs s3 access keys A vulnerability was found in python-glance-store. The issue occurs when the package logs the access_key for the glance-store when the DEBUG log level is enabled.

4.7.0-2
Affected by 0 other vulnerabilities.

4.9.1-2
Affected by 0 other vulnerabilities.

5.4.0-4
Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-hd9e-1msb-uqa6	openstack-cinder: silently access other user's volumes	CVE-2023-2088

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-03T07:50:47.958130+00:00	Debian Importer	Affected by	VCID-usrx-rfua-vfah	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:47.913802+00:00	Debian Importer	Fixing	VCID-hd9e-1msb-uqa6	https://security-tracker.debian.org/tracker/data/json	38.1.0