7 matches found
SUSE CVE-2013-4183
The clearvolume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through 2013.1.2 does not properly clear data when deleting a snapshot, which allows local users to obtain sensitive information via unspecified vectors...
PYSEC-2013-35
The clearvolume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through 2013.1.2 does not properly clear data when deleting a snapshot, which allows local users to obtain sensitive information via unspecified vectors...
OpenStack Cinder 信息泄漏漏洞(CVE-2013-4183)
Bugtraq ID:61689 CVE ID:CVE-2013-4183 OpenStack Cinder是为Openstack提供块存储的功能 OpenStack Cinder LVM卷驱动存在一个安全漏洞,当配置了安全删除secure delete时LVM快照内容可能没有正确删除清除,可导致这些数据泄漏给之后租此服务器的租户 0 OpenStack Cinder 厂商解决方案 用户可参考如下厂商提供的安全补丁以修复该漏洞: Havana development branch fix: https://review.openstack.org/36506 Grizzly fix:...
CVE-2011-4127
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...
CVE-2011-4127
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...
UBUNTU-CVE-2011-4127
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...
kernel: possible privilege escalation via SG_IO ioctl
The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to 1 a partition block device or 2 an LVM volume...