Vulnerability in Openstack Folsom
CVE-2013-2096
OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by creating an image with a large virtual siz…
EPSS: 0.001 (19.5th percentile) — read the EPSS interpretation.
Affected products
- Openstack Folsom
- Openstack Grizzly
- Openstack Havana
- N/a — versions n/a
Weakness classification (CWE)
References
- secalert@redhat.com (x_refsource_CONFIRM)
- secalert@redhat.com (x_refsource_CONFIRM)
- USN-1831-1 (x_refsource_UBUNTU, vendor-advisory)
- [openstack-announce] 20130516 [OSSA 2013-012] Nova fails to verify image virtual size (CVE-2013-2096) (Vendor Advisory, mailing-list, x_refsource_MLIST)
- secalert@redhat.com (x_refsource_CONFIRM)
- 59924 (vdb-entry, x_refsource_BID)