|
|
Subscribe / Log in / New account

openstack-nova: information leak

Package(s):openstack-nova CVE #(s):CVE-2013-7130
Created:February 5, 2014 Updated:February 5, 2014
Description: From the Red Hat bugzilla:

Loganathan Parthipan from Hewlett Packard reported a vulnerability in the Nova libvirt driver. By spawning a server with the same flavor as another user's migrated virtual machine, an authenticated user can potentially access that user's snapshot content resulting in information leakage. Only setups using KVM live block migration are affected.

Alerts:
Ubuntu USN-2247-1 nova 2014-06-17
Red Hat RHSA-2014:0366-01 openstack-nova 2014-04-03
Red Hat RHSA-2014:0231-01 openstack-nova 2014-03-04
Fedora FEDORA-2014-1463 openstack-nova 2014-02-05
Fedora FEDORA-2014-1516 openstack-nova 2014-02-05
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds