62af610079
Prepare for repository publication by: - moving all YAML under ossa/ - cargo-culting doc building from openstack/governance - adding a LICENSE (CC 3.0 BY) Change-Id: I68354a7b75060ed5012e16048e40ffb61007ff9d
63 lines
1.5 KiB
YAML
63 lines
1.5 KiB
YAML
date: 2013-12-18
|
|
|
|
id: OSSA-2013-037
|
|
|
|
title: 'Nova compute DoS through ephemeral disk backing files'
|
|
|
|
description: 'Phil Day from HP reported a vulnerability in the libvirt driver handling
|
|
of ephemeral disk backing files on Nova compute nodes. By repeatedly creating snapshots,
|
|
changing the os_type to a new random value, and spawning new instances from the
|
|
snapshot (and quickly deleting those instances), an authenticated user could generate
|
|
lots of different ephemeral disk backing files and fill up compute node disks, potentially
|
|
resulting in a Denial of Service against a Nova setup. Only Nova setups running
|
|
the libvirt driver are affected.'
|
|
|
|
reference: http://lists.openstack.org/pipermail/openstack-announce/2013-December/000179.html
|
|
|
|
affected-products:
|
|
|
|
- product: nova
|
|
version: All supported versions
|
|
|
|
vulnerabilities:
|
|
|
|
- cve-id: CVE-2013-6437
|
|
impact-assessment:
|
|
source: 'Red Hat Product Security'
|
|
rating: moderate
|
|
assessment:
|
|
type: CVSS2
|
|
score: 4
|
|
detail: AV:N/AC:L/Au:S/C:N/I:N/A:P
|
|
classification:
|
|
source: 'Red Hat Product Security'
|
|
type: CWE
|
|
detail: TODO
|
|
|
|
reporters:
|
|
|
|
- name: 'Phil Day'
|
|
affiliation: HP
|
|
reported:
|
|
- CVE-2013-6437
|
|
|
|
issues:
|
|
|
|
links:
|
|
- https://launchpad.net/bugs/1253980
|
|
|
|
type: launchpad
|
|
|
|
reviews:
|
|
|
|
icehouse:
|
|
- https://review.openstack.org/#/c/62910
|
|
|
|
havana:
|
|
- https://review.openstack.org/#/c/62912
|
|
|
|
grizzly:
|
|
- https://review.openstack.org/#/c/62913
|
|
|
|
type: gerrit
|