14 DAY TRIAL // Details about two Swift vulnerabilities that have been found and fixed in Ubuntu 15.04, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS have now been published by Canonical in a security notification.
This is not the first update for Swift in this release cycle, but it's not really a major component. Swift is the OpenStack distributed virtual object store and users have been advised to upgrade their systems as soon as possible.
"Clay Gerrard discovered Swift allowed users to delete the latest version of object regardless of object permissions when allow_version is configured. An attacker could use this issue to delete objects. Also, Rajaneesh Singh discovered Swift does not properly enforce metadata limits. An attacker could abuse this issue to store more metadata than allowed by policy," reads the security notice.
These two issues have been identified and corrected with this particular update. For a more detailed description of the problems, you can see Canonical's security notification. Users have been advised to upgrade their systems.
The problems can be repaired if you upgrade your system to the latest Swift package specific to each distribution. To apply the patch, users will have to run the Update Manager application. A reboot of the system is not required, but Swift needs to be restarted. Please keep in mind that upgrading the system on a regular basis is a good idea.