CVE-2013-4111

Name of the Vulnerable Software and Affected Versions python-glanceclient versions prior to 0.10.0

Description The issue concerns a problem with the verification of server hostnames in the python-glanceclient library. Specifically, it does not properly check the preverify ok value, which is supposed to verify the server hostname against a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate. This oversight allows man-in-the-middle attackers to spoof SSL servers by using an arbitrary valid certificate.

Recommendations For versions prior to 0.10.0, update to version 0.10.0 or later to resolve the issue.