Vulnerabilities > CVE-2013-4463 - Resource Management Errors vulnerability in Openstack Folsom, Grizzly and Havana
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) via a compressed QCOW2 image. NOTE: this issue is due to an incomplete fix for CVE-2013-2096.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Common Weakness Enumeration (CWE)
Nessus
NASL family Fedora Local Security Checks NASL id FEDORA_2013-22693.NASL description Fix CVE-2013-4469 and CVE-2013-4463 Fix CVE-2013-4469 and CVE-2013-4463 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-03-17 modified 2013-12-12 plugin id 71363 published 2013-12-12 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/71363 title Fedora 19 : openstack-nova-2013.1.4-3.fc19 (2013-22693) NASL family Ubuntu Local Security Checks NASL id UBUNTU_USN-2247-1.NASL description Darragh O last seen 2020-06-01 modified 2020-06-02 plugin id 76109 published 2014-06-18 reporter Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/76109 title Ubuntu 12.04 LTS / 13.10 / 14.04 LTS : nova vulnerabilities (USN-2247-1) NASL family Fedora Local Security Checks NASL id FEDORA_2013-22667.NASL description - Ensure we don last seen 2020-03-17 modified 2013-12-14 plugin id 71418 published 2013-12-14 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/71418 title Fedora 20 : openstack-nova-2013.2-4.fc20 (2013-22667)
Redhat
advisories |
| ||||
rpms |
|