~/products/debian/nova

pipeline liveDigest Docs

Debian Nova vulnerabilities

66 known vulnerabilities affecting debian/nova.

Total CVEs

66

CISA KEV

0

Public exploits

1

Exploited in wild

0

Severity breakdown

CRITICAL1HIGH5MEDIUM36LOW24

Vulnerabilities

Page 4 of 4

CVE-2012-5625LOWCVSS 4.32012

CVE-2012-5625 [MEDIUM] CVE-2012-5625: nova - OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt ... OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume (PV) content when reallocating for instances, which allows attackers to obtain sensitive information by reading the memory of the previous logical volume (LV). Scope: local bookworm: resolved bullseye: resolved forky: resolve

CVE-2012-3371LOWCVSS 3.5fixed in nova 2012.1.1-5 (bookworm)2012

CVE-2012-3371 [LOW] CVE-2012-3371: nova - The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1... The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service (excessive database lookup calls and server hang) via a request with many repeated IDs in the os:scheduler_hints section. Scope: local bookworm: resolved (fixed in 2012.1.1-

CVE-2012-2101LOWCVSS 3.5fixed in nova 2012.1-2 (bookworm)2012

CVE-2012-2101 [LOW] CVE-2012-2101: nova - Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of... Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number of iptables rules. Scope: local bookworm: resolved (fixed in 2012.1-2) bullseye: resolved (fi

CVE-2011-3147HIGHCVSS 8.6fixed in nova 2012.1~e1-1 (bookworm)2011

CVE-2011-3147 [HIGH] CVE-2011-3147: nova - Versions of nova before 2012.1 could expose hypervisor host files to a guest ope... Versions of nova before 2012.1 could expose hypervisor host files to a guest operating system when processing a maliciously constructed qcow filesystem. Scope: local bookworm: resolved (fixed in 2012.1~e1-1) bullseye: resolved (fixed in 2012.1~e1-1) forky: resolved (fixed in 2012.1~e1-1) sid: resolved (fixed in 2012.1~e1-1) trixie: resolved (fixed in 2012.1~e1-1)

CVE-2011-4076MEDIUMCVSS 5.9fixed in nova 2012.1~e1-1 (bookworm)2011

CVE-2011-4076 [MEDIUM] CVE-2011-4076: nova - OpenStack Nova before 2012.1 allows someone with access to an EC2_ACCESS_KEY (eq... OpenStack Nova before 2012.1 allows someone with access to an EC2_ACCESS_KEY (equivalent to a username) to obtain the EC2_SECRET_KEY (equivalent to a password). Exposing the EC2_ACCESS_KEY via http or tools that allow man-in-the-middle over https could allow an attacker to easily obtain the EC2_SECRET_KEY. An attacker could also presumably brute force values for EC2_AC

CVE-2011-4596MEDIUMCVSS 6.0fixed in nova 2012.1~e1-4 (bookworm)2011

CVE-2011-4596 [MEDIUM] CVE-2011-4596: nova - Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, ... Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted (1) tarball or (2) manifest. Scope: local bookworm: resolved (fixed in 2012.1~e1-4) bullseye: resolved (fixed in 2012.1~e1-4) forky: r

← Previous4 / 4