CVE-2013-4469

Openstack Folsom < 12.0.0a0 - Resource Management Error

Title source: rule

Description

OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by transferring an image with a large virtual size that does not contain a large amount of data from Glance. NOTE: this issue is due to an incomplete fix for CVE-2013-2096.

References (3)

Scores

EPSS 0.0006
EPSS Percentile 18.6%

Classification

CWE
CWE-399
Status draft

Affected Products (4)

openstack/folsom
openstack/grizzly
openstack/havana
pypi/nova < 12.0.0a0PyPI

Timeline

Published Nov 02, 2013
Tracked Since Feb 18, 2026