4 matches found
CVE-2020-17376
CVE-2020-17376 : In OpenStack Nova, a vulnerability in Guest.migrate (virt/libvirt/guest.py) allows a user to access destination-host devices that share paths with source-host devices after performing a soft reboot of an instance that has previously undergone live migration. Affected are OpenStac...
CVE-2017-17051
OpenStack Nova CVE-2017-16239 affects stable/pike and later with the fix for OSSA-2017-005. By repeatedly rebuilding an instance with new images using the default FilterScheduler, an authenticated user may cause untracked resource allocations on a hypervisor, leading to denial of service (doubled...
CVE-2011-3147
CVE-2011-3147 concerns OpenStack Nova: when processing a malicious qcow filesystem, versions of Nova prior to 2012.1 could expose host hypervisor filesystem information to the guest. Multiple sources (e.g., OSV, GHSA advisories, and CVE records) describe the issue as a qcow-related exposure of ho...
CVE-2026-46448
OpenStack Nova before 33.0.2 is affected: the server create API does not strip internal _nova-prefixed scheduler hints, causing instances to be created without proper Placement allocation. This can enable resource misallocation and, in worst cases, denial of service through compute-node resource ...