|
|
Log in / Subscribe / Register

Debian alert DSA-6314-1 (swift)



From:
              Moritz Muehlenhoff <jmm@debian.org>


To:
              debian-security-announce@lists.debian.org


Subject:
              [SECURITY] [DSA 6314-1] swift security update


Date:
              Sun, 31 May 2026 18:38:29 +0000


Message-ID:
              <ahyAJTRSXyJgDejh@seger.debian.org>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6314-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
May 31, 2026                          https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : swift
CVE ID         : CVE-2026-49017

Alistair Coles discovered that the s3api middleware of Swift, a
distributed virtual object store, was susceptible to denial of service.

The oldstable distribution (bookworm) is not affected.

For the stable distribution (trixie), this problem has been fixed in
version 2.35.1-0+deb13u2.

We recommend that you upgrade your swift packages.

For the detailed security status of swift please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/swift

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=QHr6
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds