Lucene search
UbuntuUSN-1545-1HistoryAug 22, 2012 - 12:00 a.m.
Nova vulnerability
2012-08-2200:00:00
ubuntu.com
29
6.8 Medium
AI Score
Confidence
Low
5.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
0.004 Low
EPSS
Percentile
73.0%
Releases
- Ubuntu 12.04
- Ubuntu 11.10
Packages
- nova - OpenStack Compute cloud infrastructure
Details
Padraig Brady discovered that the fix for CVE-2012-3361 was incomplete and
an authenticated user could still corrupt arbitrary files on the host
running Nova. A remote attacker could use this to cause a denial of service
or possibly gain privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.04 | noarch | python-nova | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-ajax-console-proxy | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-api | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-api-ec2 | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-api-metadata | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-api-os-compute | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-api-os-volume | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-cert | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-common | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | nova-compute | < 2012.1+stable~20120612-3ee026e-0ubuntu1.3 | UNKNOWN |
References
Related
securityvulns
securityvulns
[USN-1545-1] Nova vulnerability
2012-08-27 00:00:00
Nova security vulnerabilities
2012-08-27 00:00:00
[USN-1497-1] Nova vulnerabilities
2012-07-09 00:00:00
ubuntucve
ubuntucve
CVE-2012-3361
2012-07-03 00:00:00
CVE-2012-3447
2012-08-10 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1545-1)
2012-08-24 00:00:00
Ubuntu Update for nova USN-1545-1
2012-08-24 00:00:00
Fedora Update for openstack-nova FEDORA-2012-11756
2012-08-30 00:00:00
github
github
Arbitrary file overwrite in OpenStack Nova
2022-05-17 01:44:00
prion
prion
Design/Logic Flaw
2012-08-20 18:55:00
Design/Logic Flaw
2012-07-22 16:55:00
nessus
nessus
Ubuntu 11.10 / 12.04 LTS : nova vulnerability (USN-1545-1)
2012-08-23 00:00:00
Fedora 17 : openstack-nova-2012.1.1-15.fc17 (2012-11756)
2012-08-22 00:00:00
Fedora 16 : openstack-nova-2011.3.1-11.fc16 (2012-10418)
2012-07-20 00:00:00
debiancve
debiancve
CVE-2012-3447
2012-08-20 18:55:00
CVE-2012-3361
2012-07-22 16:55:00
osv
osv
Arbitrary file overwrite in OpenStack Nova
2022-05-17 01:44:00
cve
cve
CVE-2012-3447
2012-08-20 18:55:00
CVE-2012-3361
2012-07-22 16:55:00
fedora
fedora
[SECURITY] Fedora 17 Update: openstack-nova-2012.1.1-15.fc17
2012-08-21 09:53:13
[SECURITY] Fedora 16 Update: openstack-nova-2011.3.1-11.fc16
2012-07-19 09:07:01
[SECURITY] Fedora 17 Update: openstack-nova-2012.1.3-3.fc17
2013-02-10 04:43:56
ubuntu
ubuntu
Nova vulnerabilities
2012-07-03 00:00:00
6.8 Medium
AI Score
Confidence
Low
5.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
0.004 Low
EPSS
Percentile
73.0%
Related for USN-1545-1