Published: 02/11/2013 Updated: 07/11/2023

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

VMScore: 169

Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P

OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by transferring an image with a large virtual size that does not contain a large amount of data from Glance. NOTE: this issue is due to an incomplete fix for CVE-2013-2096.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openstack havana -
openstack grizzly -
openstack folsom -

Several security issues were fixed in OpenStack Nova ...

Debian Bug report logs - #728605 nova: CVE-2013-4463 and CVE-2013-4469 Package: nova; Maintainer for nova is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 3 Nov 2013 14:30:01 UTC Severity: important Tags: patch, security, upstream Fixed in ver ...

Debian Bug report logs - #732022 nova: CVE-2013-7048: Nova live snapshots use an insecure local directory Package: nova; Maintainer for nova is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 12 Dec 2013 16:09:02 UTC Severity: important Tags: secu ...

CWE-399 http://www.openwall.com/lists/oss-security/2013/10/31/3 https://bugs.launchpad.net/nova/+bug/1206081 http://www.ubuntu.com/usn/USN-2247-1 https://usn.ubuntu.com/2247-1/https://nvd.nist.gov

CVE-2013-4469

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect