Lucene search
RootSSV:60980HistoryAug 27, 2013 - 12:00 a.m.
OpenStack Cinder 信息泄漏漏洞(CVE-2013-4183)
2013-08-2700:00:00
Root
www.seebug.org
13
0.0004 Low
EPSS
Percentile
5.7%
Bugtraq ID:61689
CVE ID:CVE-2013-4183
OpenStack Cinder是为Openstack提供块存储的功能
OpenStack Cinder LVM卷驱动存在一个安全漏洞,当配置了安全删除(secure delete)时LVM快照内容可能没有正确删除清除,可导致这些数据泄漏给之后租此服务器的租户
0
OpenStack Cinder
厂商解决方案
用户可参考如下厂商提供的安全补丁以修复该漏洞:
Havana (development branch) fix:
https://review.openstack.org/36506
Grizzly fix:
https://review.openstack.org/39565
Related
ubuntucve
ubuntucve
CVE-2013-4183
2013-08-07 00:00:00
cve
cve
CVE-2013-4183
2013-09-16 19:14:00
debiancve
debiancve
CVE-2013-4183
2013-09-16 19:14:00
cvelist
cvelist
CVE-2013-4183
2013-09-16 19:00:00
prion
prion
Design/Logic Flaw
2013-09-16 19:14:00
veracode
veracode
Information Disclosure
2019-01-15 08:58:19
Denial Of Service (DoS)
2019-05-02 04:48:39
github
github
OpenStack Cinder LVMVolumeDriver does not zero deleted snapshots
2022-05-17 04:58:58
nessus
nessus
RHEL 6 : openstack-cinder (RHSA-2013:1198)
2024-04-21 00:00:00
Ubuntu 13.04 : cinder vulnerabilities (USN-2005-1)
2013-10-24 00:00:00
ubuntu
ubuntu
Cinder vulnerabilities
2013-10-23 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2005-1)
2013-10-29 00:00:00
Ubuntu Update for cinder USN-2005-1
2013-10-29 00:00:00
securityvulns
securityvulns
[USN-2005-1] Cinder vulnerabilities
2013-10-28 00:00:00
OpenStack multiple security vulnerabilities
2013-12-23 00:00:00
redhat
redhat
(RHSA-2013:1198) Moderate: openstack-cinder security update
2013-09-03 00:00:00