65 lines
1.6 KiB
YAML
65 lines
1.6 KiB
YAML
date: 2014-10-02
|
|
|
|
id: OSSA-2014-033
|
|
|
|
title: 'Cinder-volume host data leak to vm instance'
|
|
|
|
description: 'Duncan Thomas from Hewlett Packard reported a vulnerability in Cinder
|
|
GlusterFS and Linux Smbfs drivers. By overwriting a volume from within
|
|
an instance with a malicious qcow2 header, an authenticated user may be
|
|
able to clone and attach that corrupted volume resulting in affected
|
|
drivers leaking an arbitrary file from the Cinder-volume host to the
|
|
virtual instance. Note that the host file must be readable by the Cinder
|
|
context to be exposed. Only Cinder setups using GlusterFS volume driver
|
|
configured with glusterfs_qcow2_volumes=False (which is the default) or
|
|
Cinder setups using Smbfs volume driver configured with
|
|
smbfs_default_volume_format=raw (which is not the default) are affected.'
|
|
|
|
reference: http://lists.openstack.org/pipermail/openstack-announce/2014-October/000288.html
|
|
|
|
affected-products:
|
|
|
|
- product: cinder
|
|
version: up to 2014.1.2
|
|
|
|
vulnerabilities:
|
|
|
|
- cve-id: CVE-2014-3641
|
|
impact-assessment:
|
|
source: 'Red Hat Product Security'
|
|
rating: moderate
|
|
assessment:
|
|
type: CVSS2
|
|
score: 3.5
|
|
detail: AV:N/AC:M/Au:S/C:P/I:N/A:N
|
|
classification:
|
|
source: 'Red Hat Product Security'
|
|
type: CWE
|
|
detail: CWE-200
|
|
|
|
reporters:
|
|
|
|
- name: 'Duncan Thomas'
|
|
affiliation: Hewlett Packard
|
|
reported:
|
|
- CVE-2014-3641
|
|
|
|
|
|
issues:
|
|
|
|
links:
|
|
- https://launchpad.net/bugs/1350504
|
|
|
|
type: launchpad
|
|
|
|
reviews:
|
|
|
|
juno:
|
|
- https://review.openstack.org/125671
|
|
|
|
icehouse:
|
|
- https://review.openstack.org/125710
|
|
|
|
|
|
type: gerrit
|