CVE-2013-4155 Information

Description

OpenStack Swift before 1.9.1 in Folsom Grizzly and Havana allows authenticated users to cause a denial of service (\superfluous\ tombstone consumption and Swift cluster slowdown) via a DELETE request with a timestamp that is older than expected.

Reference

http://rhn.redhat.com/errata/RHSA-2013-1197.html http://www.debian.org/security/2012/dsa-2737 http://www.openwall.com/lists/oss-security/2013/08/07/6 http://www.ubuntu.com/usn/USN-2001-1 https://bugs.launchpad.net/swift/+bug/1196932 https://review.openstack.org//c/40643/ https://review.openstack.org//c/40645/ https://review.openstack.org//c/40646/