date: 2013-12-18

id: OSSA-2013-037

title: 'Nova compute DoS through ephemeral disk backing files'

description: 'Phil Day from HP reported a vulnerability in the libvirt driver handling
  of ephemeral disk backing files on Nova compute nodes. By repeatedly creating snapshots,
  changing the os_type to a new random value, and spawning new instances from the
  snapshot (and quickly deleting those instances), an authenticated user could generate
  lots of different ephemeral disk backing files and fill up compute node disks, potentially
  resulting in a Denial of Service against a Nova setup. Only Nova setups running
  the libvirt driver are affected.'

reference: http://lists.openstack.org/pipermail/openstack-announce/2013-December/000179.html

affected-products:

  - product: nova
    version: All supported versions

vulnerabilities:

  - cve-id: CVE-2013-6437
    impact-assessment:
      source: 'Red Hat Product Security'
      rating: moderate
      assessment:
        type: CVSS2
        score: 4
        detail: AV:N/AC:L/Au:S/C:N/I:N/A:P
    classification:
      source: 'Red Hat Product Security'
      type: CWE
      detail: TODO

reporters:

  - name: 'Phil Day'
    affiliation: HP
    reported:
      - CVE-2013-6437

issues:

  links:
    - https://launchpad.net/bugs/1253980

  type: launchpad

reviews:

  icehouse:
    - https://review.openstack.org/#/c/62910

  havana:
    - https://review.openstack.org/#/c/62912

  grizzly:
    - https://review.openstack.org/#/c/62913

  type: gerrit