VulnerableCode Package Details - pkg:pypi/python-glanceclient@0.10.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/python-glanceclient@0.10.0

Essentials
History (2)

purl	pkg:pypi/python-glanceclient@0.10.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-b47q-cgjt-t3h9	The Python client library for Glance (python-glanceclient) before 0.10.0 does not properly check the preverify_ok value, which prevents the server hostname from being verified with a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate and allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVE-2013-4111 GHSA-qgfg-gvff-523v PYSEC-2013-11

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:43:27.101388+00:00	GitLab Importer	Fixing	VCID-b47q-cgjt-t3h9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-glanceclient/CVE-2013-4111.yml	38.6.0
2026-06-02T04:03:20.631208+00:00	Pypa Importer	Fixing	VCID-b47q-cgjt-t3h9	https://github.com/pypa/advisory-database/blob/main/vulns/python-glanceclient/PYSEC-2013-11.yaml	38.6.0