Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-m674-hmx2-ffhq

Опубликовано: 17 мая 2022
Источник: github
Github: Прошло ревью
CVSS4: 6.9

Описание

OpenStack Compute (Nova) does not verify the virtual size of a QCOW2 image

OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by creating an image with a large virtual size that does not contain a large amount of data.

Ссылки

Пакеты

Наименование

nova

pip
Затронутые версииВерсия исправления

< 12.0.0a0

12.0.0a0

EPSS

Процентиль: 19%
0.00062
Низкий

6.9 Medium

CVSS4

CVE ID

CVE-2013-2096

Дефекты

CWE-770

Связанные уязвимости

ubuntu логотип

CVE-2013-2096

ubuntu
больше 12 лет назад

OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by creating an image with a large virtual size that does not contain a large amount of data.

redhat логотип

CVE-2013-2096

redhat
больше 12 лет назад

OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by creating an image with a large virtual size that does not contain a large amount of data.

nvd логотип

CVE-2013-2096

nvd
больше 12 лет назад

OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by creating an image with a large virtual size that does not contain a large amount of data.

debian логотип

CVE-2013-2096

debian
больше 12 лет назад

OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify t ...

EPSS

Процентиль: 19%
0.00062
Низкий

6.9 Medium

CVSS4

CVE ID

CVE-2013-2096

Дефекты

CWE-770