date: 2013-09-12

id: OSSA-2013-026

title: 'Potential denial of service on Nova when using Qpid'

description: 'Jaroslav Henner from Red Hat reported a vulnerability in Nova when using
  Apache Qpid as the RPC backend. By sending any random text longer than 65K characters
  to an instance console and requesting the console log contents through the API,
  an authenticated user may disrupt the nova-compute node his instance is running
  on. This vulnerability could be leveraged in a Denial of Service attack against
  the cloud provider. Only Folsom and Grizzly setups using Qpid as their RPC backend
  are affected. Havana setups, or setups using other RPC backends (like RabbitMQ),
  are all unaffected.'

reference: http://lists.openstack.org/pipermail/openstack-announce/2013-September/000143.html

affected-products:

  - product: nova
    version: Folsom, Grizzly

vulnerabilities:

  - cve-id: CVE-2013-4261
    impact-assessment:
      source: 'Red Hat Product Security'
      rating: moderate
      assessment:
        type: CVSS2
        score: 4.0
        detail: AV:N/AC:L/Au:S/C:N/I:N/A:P
    classification:
      source: 'Red Hat Product Security'
      type: CWE
      detail: TODO

reporters:

  - name: 'Jaroslav Henner'
    affiliation: 'Red Hat'
    reported:
      - CVE-2013-4261

issues:

  links:
    - https://launchpad.net/bugs/1215091

  type: launchpad

reviews:

  grizzly:
    - https://review.openstack.org/#/c/43303

  folsom:
    - https://review.openstack.org/#/c/45426

  type: gerrit