CVE-2012-1585

Priority
Medium
Description
OpenStack Compute (Nova) Essex before 2011.3 allows remote authenticated
users to cause a denial of service (Nova-API log file and disk consumption)
via a long server name.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1585
http://www.ubuntu.com/usn/usn-1413-1
Bugs
https://bugs.launchpad.net/nova/+bug/962515
Assigned-to
tyhicks
Package
Source: nova (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 11.04 (Natty Narwhal):released (2011.2-0ubuntu1.3)
Ubuntu 11.10 (Oneiric Ocelot):released (2011.3-0ubuntu6.5)
Ubuntu 12.04 LTS (Precise Pangolin):released (2012.1~rc2-0ubuntu1)
Patches:
Upstream:http://github.com/openstack/nova/commit/c7f526fae6062e9ab51f65474af71d496aa66554
More Information

Valid XHTML 1.0 Strict

Updated: 2012-08-22 22:14:31 UTC (commit 5659)