Vulnerabilities > CVE-2014-9623 - Resource Management Errors vulnerability in multiple products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting an image in the saving state.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Redhat
| advisories |
| ||||||||||||
| rpms |
|
References
- http://rhn.redhat.com/errata/RHSA-2015-0644.html
- http://rhn.redhat.com/errata/RHSA-2015-0644.html
- http://rhn.redhat.com/errata/RHSA-2015-0837.html
- http://rhn.redhat.com/errata/RHSA-2015-0837.html
- http://rhn.redhat.com/errata/RHSA-2015-0838.html
- http://rhn.redhat.com/errata/RHSA-2015-0838.html
- http://secunia.com/advisories/62165
- http://secunia.com/advisories/62165
- http://www.openwall.com/lists/oss-security/2015/01/18/4
- http://www.openwall.com/lists/oss-security/2015/01/18/4
- http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
- https://bugs.launchpad.net/glance/+bug/1383973
- https://bugs.launchpad.net/glance/+bug/1383973
- https://bugs.launchpad.net/glance/+bug/1398830
- https://bugs.launchpad.net/glance/+bug/1398830
- https://security.openstack.org/ossa/OSSA-2015-003.html
- https://security.openstack.org/ossa/OSSA-2015-003.html