OpenStack Nova vulnerability

2013-01-29T00:00:00
ID USN-1709-1
Type ubuntu
Reporter Ubuntu
Modified 2013-01-29T00:00:00

Description

Phil Day discovered that nova-volume did not validate access to volumes. An authenticated attacker could exploit this to bypass intended access controls and boot from arbitrary volumes.