7 matches found
RHSA-2016:0017 Red Hat Security Advisory: openstack-nova security advisory
Bulletin has no description...
GHSA-CM54-3VVF-F5P8 OpenStack Nova Arbitrary file injection/corruption through directory traversal issues
virt/disk/api.py in OpenStack Compute Nova Folsom 2012.2, Essex 2012.1, and Diablo 2011.3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image...
GHSA-W429-XC55-HC48 OpenStack Nova host data leak to vm instance in rescue mode
The instance rescue mode in OpenStack Compute Nova 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images and usecowimages is set to false, allows remote authenticated users to read certain compute host files by overwriting an instance disk with a crafted image...
SUSE-SU-2018:1448-1 Security update for openstack-nova
This update for openstack-nova fixes the following bugs and security issues: The following security-issue has been fixed: - CVE-2017-18191: libvirt: Block swap volume attempts with encrypted volumes. bsc1081685 Additionally, the following bugs have been fixed: - Set TasksMax to infinity for...
SUSE-SU-2017:3080-1 Security update for openstack-nova
This update for openstack-nova brings the latest version provided by the OpenStack upstream project including the following security fix: - CVE-2017-16239: Filter Scheduler bypass through rebuild action bsc1066198...
SUSE-SU-2015:0324-1 Security update for openstack-nova
This update for openstack-nova provides stability fixes from the upstream OpenStack project: Add @retryondeadlock to instanceupdate Fix nova-compute start issue after evacuate Fix nova evacuate issues for RBD Add wrapdberror support to SessionTransaction.commit Fixes DoS issue in instance list ip...
Fedora 20 : openstack-nova-2013.2.3-2.fc20 (2014-7954)
Add RBAC policy for ec2 API security groups calls - CVE-2014-0167 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...