Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-5644-2V3H-5W4X
HistoryMay 17, 2022 - 4:41 a.m.

OpenStack Nova denial of service through compressed disk images

2022-05-1704:41:48
GitHub Advisory Database
github.com
1

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) via a compressed QCOW2 image. NOTE: this issue is due to an incomplete fix for CVE-2013-2096.

CPENameOperatorVersion
novalt12.0.0a0

Related

cvelist 3
veracode 1
prion 3
debiancve 3
fedora 11
ubuntucve 3
nessus 5
openvas 19
securityvulns 4
cve 2
ubuntu 2
redhat 1
ibm 1
github 1
cvelist
cvelist
CVE-2013-4463
2014-02-06 02:00:00
CVE-2013-2096
2013-07-09 17:00:00
CVE-2013-4469
2013-11-02 18:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:55:52
prion
prion
Design/Logic Flaw
2014-02-06 05:44:00
Design/Logic Flaw
2013-07-09 17:55:00
Design/Logic Flaw
2013-11-02 18:55:00
debiancve
debiancve
CVE-2013-4463
2014-02-06 05:44:24
CVE-2013-2096
2013-07-09 17:55:01
CVE-2013-4469
2013-11-02 18:55:03
fedora
fedora
[SECURITY] Fedora 20 Update: openstack-nova-2013.2.1-2.fc20
2014-01-07 09:34:58
[SECURITY] Fedora 20 Update: openstack-nova-2013.2.1-4.fc20
2014-02-05 03:34:44
[SECURITY] Fedora 20 Update: openstack-nova-2013.2-4.fc20
2013-12-14 03:44:32
ubuntucve
ubuntucve
CVE-2013-4463
2014-02-06 00:00:00
CVE-2013-4469
2013-11-02 00:00:00
CVE-2013-2096
2013-05-16 00:00:00
nessus
nessus
Fedora 19 : openstack-nova-2013.1.4-3.fc19 (2013-22693)
2013-12-12 00:00:00
Fedora 20 : openstack-nova-2013.2-4.fc20 (2013-22667)
2013-12-14 00:00:00
Ubuntu 12.04 LTS / 12.10 / 13.04 : nova vulnerability (USN-1831-1)
2013-05-17 00:00:00
openvas
openvas
Fedora Update for openstack-nova FEDORA-2014-1463
2014-08-06 00:00:00
Fedora Update for openstack-nova FEDORA-2013-22667
2014-02-03 00:00:00
Fedora Update for openstack-nova FEDORA-2013-22667
2014-02-03 00:00:00
securityvulns
securityvulns
[USN-1831-1] OpenStack Nova vulnerability
2013-06-17 00:00:00
[USN-2247-1] OpenStack Nova vulnerabilities
2014-06-19 00:00:00
OpenStack multiple security vulnerabilities
2013-07-01 00:00:00
cve
cve
CVE-2013-2096
2013-07-09 17:55:01
CVE-2013-4463
2014-02-06 05:44:24
ubuntu
ubuntu
OpenStack Nova vulnerability
2013-05-16 00:00:00
OpenStack Nova vulnerabilities
2014-06-17 00:00:00
redhat
redhat
(RHSA-2014:0112) Moderate: openstack-nova security and bug fix update
2014-01-30 00:00:00
ibm
ibm
Security Bulletin: Potential Nova denial of service through compressed disk images (CVE-2013-4463, CVE-2013-4469)
2018-06-17 22:30:48
github
github
OpenStack Compute (Nova) Denial of service due to improper validation of virtual size of QCOW2 image
2022-05-17 04:41:34

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for GHSA-5644-2V3H-5W4X
cvelist3veracode1prion3debiancve3fedora11ubuntucve3nessus5openvas19securityvulns4cve2ubuntu2redhat1ibm1github1