Your submission was sent successfully! Close

CVE-2013-4497

Published: 05 November 2013

The XenAPI backend in OpenStack Compute (Nova) Folsom, Grizzly, and Havana before 2013.2 does not properly apply security groups (1) when resizing an image or (2) during live migration, which allows remote attackers to bypass intended restrictions.

Priority

Medium

Notes

AuthorNote
mdeslaur
OSSA 2013-030
jdstrand
the proposed patches have tests cases even though upstream only
patched grizzly without a test case
Ubuntu 12.04 LTS (essex) is not affected

References

Bugs