Vulnerability in Openstack Folsom
CVE-2013-4469
OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by tran…
EPSS: 0.001 (19.1th percentile) — read the EPSS interpretation.
Affected products
- Openstack Folsom
- Openstack Grizzly
- Openstack Havana
- N/a — versions n/a
Weakness classification (CWE)
References
- secalert@redhat.com (x_refsource_CONFIRM, Exploit)
- [oss-security] 20131031 [OSSA 2013-029] Potential Nova denial of service through compressed disk images (CVE-2013-4463, CVE-2013-4469) (mailing-list, x_refsource_MLIST, Patch)
- USN-2247-1 (x_refsource_UBUNTU, vendor-advisory)