Back to search
CVE-2013-2096
Published: Jul 9, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by creating an image with a large virtual size that does not contain a large amount of data.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://review.openstack.org/#/c/28717/
x_refsource_CONFIRM
https://review.openstack.org/#/c/28901/
x_refsource_CONFIRM
USN-1831-1
vendor-advisory
x_refsource_UBUNTU
[openstack-announce] 20130516 [OSSA 2013-012] Nova fails to verify image virtual size (CVE-2013-2096)
mailing-list
x_refsource_MLIST
https://review.openstack.org/#/c/29192/
x_refsource_CONFIRM
59924
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now