You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@cloudstack.apache.org by Suresh Sadhu <su...@accelerite.com> on 2017/02/25 15:26:52 UTC

latest security vulnerability "Cloudbleed"

HI All,

On February 18th, 2017, Google security researchers discovered a potentially dangerous leak in Cloudflare's services that resulted in the exposure of sensitive data belonging to thousands of companies and their users. The media has dubbed the leak "Cloudbleed.". The flaw was exposed via an issue with an HTML parser.

http://gizmodo.com/cloudbleed-is-a-problem-but-it-gets-worse-1792721147


Regards
Sadhu






DISCLAIMER
==========
This e-mail may contain privileged and confidential information which is the property of Accelerite, a Persistent Systems business. It is intended only for the use of the individual or entity to which it is addressed. If you are not the intended recipient, you are not authorized to read, retain, copy, print, distribute or use this message. If you have received this communication in error, please notify the sender and delete all copies of this message. Accelerite, a Persistent Systems business does not accept any liability for virus infected mails.

RE: latest security vulnerability "Cloudbleed"

Posted by Suresh Sadhu <su...@accelerite.com>.

would like to know  does any of users got impacted who might be using their services. That is the reason send  this to users list and not on dev list .

regards
sadhu

-----Original Message-----
From: Rene Moser [mailto:mail@renemoser.net] 
Sent: Saturday, February 25, 2017 9:07 PM
To: users@cloudstack.apache.org
Subject: Re: latest security vulnerability "Cloudbleed"

Hi Suresh

And this is interesting for cloudstack users because of... what reason?

René

On 02/25/2017 04:26 PM, Suresh Sadhu wrote:
> HI All,
> 
> On February 18th, 2017, Google security researchers discovered a potentially dangerous leak in Cloudflare's services that resulted in the exposure of sensitive data belonging to thousands of companies and their users. The media has dubbed the leak "Cloudbleed.". The flaw was exposed via an issue with an HTML parser.
> 
> http://gizmodo.com/cloudbleed-is-a-problem-but-it-gets-worse-1792721147
> 
> 
> Regards
> Sadhu
> 
> 
> 
> 
> 
> 
> DISCLAIMER
> ==========
> This e-mail may contain privileged and confidential information which is the property of Accelerite, a Persistent Systems business. It is intended only for the use of the individual or entity to which it is addressed. If you are not the intended recipient, you are not authorized to read, retain, copy, print, distribute or use this message. If you have received this communication in error, please notify the sender and delete all copies of this message. Accelerite, a Persistent Systems business does not accept any liability for virus infected mails.
> 

DISCLAIMER
==========
This e-mail may contain privileged and confidential information which is the property of Accelerite, a Persistent Systems business. It is intended only for the use of the individual or entity to which it is addressed. If you are not the intended recipient, you are not authorized to read, retain, copy, print, distribute or use this message. If you have received this communication in error, please notify the sender and delete all copies of this message. Accelerite, a Persistent Systems business does not accept any liability for virus infected mails.

Re: latest security vulnerability "Cloudbleed"

Posted by Rene Moser <ma...@renemoser.net>.

Hi Suresh

And this is interesting for cloudstack users because of... what reason?

Ren

On 02/25/2017 04:26 PM, Suresh Sadhu wrote:
> HI All,
> 
> On February 18th, 2017, Google security researchers discovered a potentially dangerous leak in Cloudflare's services that resulted in the exposure of sensitive data belonging to thousands of companies and their users. The media has dubbed the leak "Cloudbleed.". The flaw was exposed via an issue with an HTML parser.
> 
> http://gizmodo.com/cloudbleed-is-a-problem-but-it-gets-worse-1792721147
> 
> 
> Regards
> Sadhu
> 
> 
> 
> 
> 
> 
> DISCLAIMER
> ==========
> This e-mail may contain privileged and confidential information which is the property of Accelerite, a Persistent Systems business. It is intended only for the use of the individual or entity to which it is addressed. If you are not the intended recipient, you are not authorized to read, retain, copy, print, distribute or use this message. If you have received this communication in error, please notify the sender and delete all copies of this message. Accelerite, a Persistent Systems business does not accept any liability for virus infected mails.
>