Computer Security
[EN] no-pyccku

Nova DoS
updated since 26.04.2012
SecurityVulns ID:12349
Threat Level:
Description:Resources exhaustion via oversized username. Resources exhaustion by quota limitatations bypass.
Affected:NOVA : Nova 2011.3
CVE:CVE-2012-2101 (Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number of iptables rules.)
 CVE-2012-1585 (OpenStack Compute (Nova) Essex before 2011.3 allows remote authenticated users to cause a denial of service (Nova-API log file and disk consumption) via a long server name.)
Original documentdocumentDEBIAN, [USN-1438-1] Nova vulnerability (14.05.2012)
 documentUBUNTU, [USN-1413-1] Nova vulnerability (26.04.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod