First published: Thu Feb 06 2014(Updated: )
The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and Icehouse, when using KVM live block migration, does not properly create all expected files, which allows attackers to obtain snapshot root disk contents of other users via ephemeral storage.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
OpenStack Compute | =2012.2 | |
OpenStack Compute | =2013.1 | |
OpenStack Compute | =2013.1.1 | |
OpenStack Compute | =2013.1.2 | |
OpenStack Compute | =2013.1.3 | |
Openstack Grizzly | ||
Openstack Havana | ||
Openstack Icehouse | ||
pip/nova | <12.0.0a0 | 12.0.0a0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.