6 matches found
Ubuntu: Security Advisory (USN-1771-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Denial Of Service (DoS)
The openstack-nova packages provide OpenStack Compute code name Nova, which provides services for provisioning, managing, and using virtual machine instances. A flaw was found in the way the Nova VNC proxy handled console tokens. In some cases, a console token that was valid for one virtual machi...
Moderate: Red Hat Security Advisory: openstack-nova security and bug fix update
Updated openstack-nova packages that fix two security issues and various bugs are now available for Red Hat OpenStack Folsom. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
[USN-1771-1] OpenStack Nova vulnerabilities
========================================================================== Ubuntu Security Notice USN-1771-1 March 20, 2013 nova vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...
CVE-2013-0335
CVE-2013-0335 affects OpenStack Nova (Grizzly, Folsom 2012.2, Essex 2012.1). The issue allows remote authenticated users to gain access to a VM by reusing the VNC token of a deleted VM bound to the same VNC port. The OpenStack release notes reference VNC Token Validation as a fix in the 2012.2.4 ...
OpenStack Nova 安全绕过漏洞(CVE-2013-0335)
BUGTRAQ ID: 58189 CVECAN ID: CVE-2013-0335 OpenStack Compute Nova是用Python编写的云计算构造控制器,属于laaS系统的一部分。 OpenStack nova VNC代理可连接到错误的VM,攻击者可利用此漏洞绕过某些安全限制并执行未授权操作。 0 openstack Nova 厂商补丁: openstack --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://lists.openstack.org/pipermail/openstack-announce/...