Download
| Alert*
oval:org.secpod.oval:def:700889
nova: OpenStack Compute cloud infrastructure Details: USN 1466-1 fixed a vulnerability in Nova. The upstream patch introduced a regression when a security group granted full access and therefore the network protocol was left unset, causing an error in processing. This update fixes the issue. We apol ... oval:org.secpod.oval:def:700927 nova: OpenStack Compute cloud infrastructure Nova could be made to overwrite or corrupt arbitrary files in the compute host file system. oval:org.secpod.oval:def:700887 nova: OpenStack Compute cloud infrastructure Nova could be prevented from applying security group policy. oval:org.secpod.oval:def:700932 nova: OpenStack Compute cloud infrastructure Nova could be made to not respond if passed specially crafted input. oval:org.secpod.oval:def:700853 nova: OpenStack Compute cloud infrastructure Nova could be made to crash the system under certain conditions. oval:org.secpod.oval:def:603203 George Shuklin from servers.com discovered that Nova, a cloud computing fabric controller, did not correctly enforce its image- or hosts-filters. This allowed an authenticated user to bypass those filters by simply rebuilding an instance. oval:org.secpod.oval:def:701154 nova: OpenStack Compute cloud infrastructure Nova volume could be made to expose volumes from other users. oval:org.secpod.oval:def:701297 nova: OpenStack Compute cloud infrastructure Details: USN-1831-1 fixed a vulnerability in OpenStack Nova. The upstream fix introduced a regression where instances using uncached QCOW2 images would fail to start. This update fixes the problem. We apologize for the inconvenience. Original advisory USN ... oval:org.secpod.oval:def:702075 nova: OpenStack Compute cloud infrastructure Several security issues were fixed in OpenStack Nova. oval:org.secpod.oval:def:701188 nova: OpenStack Compute cloud infrastructure Nova could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:701287 nova: OpenStack Compute cloud infrastructure Nova could be made to crash the system if instances used a specially crafted image. oval:org.secpod.oval:def:701225 nova: OpenStack Compute cloud infrastructure Two security issues were fixed in Nova. oval:org.secpod.oval:def:701743 python-nova is installed oval:org.secpod.oval:def:701105 nova: OpenStack Compute cloud infrastructure Nova could be made to expose sensitive information. oval:org.secpod.oval:def:52889 nova: OpenStack Compute cloud infrastructure Several security issues were fixed in OpenStack Nova. oval:org.secpod.oval:def:703841 nova: OpenStack Compute cloud infrastructure Several security issues were fixed in OpenStack Nova. oval:org.secpod.oval:def:702284 nova: OpenStack Compute cloud infrastructure OpenStack Nova could be made to expose sensitive information. oval:org.secpod.oval:def:52142 nova: OpenStack Compute cloud infrastructure OpenStack Nova could be made to expose sensitive information over the network. oval:org.secpod.oval:def:21002 nova: OpenStack Compute cloud infrastructure OpenStack Nova could be made to expose sensitive information over the network. oval:org.secpod.oval:def:52238 nova: OpenStack Compute cloud infrastructure Several security issues were fixed in OpenStack Nova. oval:org.secpod.oval:def:701460 nova: OpenStack Compute cloud infrastructure Nova could be made to crash if it received specially crafted network requests. oval:org.secpod.oval:def:700976 nova: OpenStack Compute cloud infrastructure Nova could be made to overwrite or corrupt arbitrary files in the compute host file system. oval:org.secpod.oval:def:89399 nova: OpenStack Compute cloud infrastructure Several security issues were fixed in Nova. oval:org.secpod.oval:def:52339 nova: OpenStack Compute cloud infrastructure OpenStack Nova could be made to expose sensitive information. oval:org.secpod.oval:def:705124 nova: OpenStack Compute cloud infrastructure Nova could be made to expose sensitive information. |