PublicDateAtUSN: 2013-03-14 15:00:00 UTC
Candidate: CVE-2013-1838
CRD: 2013-03-14 15:00:00 UTC
PublicDate: 2013-03-22 21:55:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1838
 https://lists.launchpad.net/openstack/msg21892.html
 https://ubuntu.com/security/notices/USN-1771-1
Description:
 OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) does
 not properly implement a quota for fixed IPs, which allows remote
 authenticated users to cause a denial of service (resource exhaustion and
 failure to spawn new instances) via a large number of calls to the
 addFixedIp function.
Ubuntu-Description: 
Notes: 
Bugs: 
 https://bugs.launchpad.net/bugs/1125468
Priority: medium
Discovered-by: Vish Ishaya
Assigned-to:  jdstrand
CVSS: 

Patches_nova:
upstream_nova: pending (2013.1~rc1)
hardy_nova: DNE
lucid_nova: DNE
oneiric_nova: released (2011.3-0ubuntu6.13)
precise_nova: released (2012.1.3+stable-20120827-4d2a4afe-0ubuntu1.4)
quantal_nova: released (2012.2.1+stable-20121212-a99a802e-0ubuntu1.4)
devel_nova: not-affected (1:2013.1~rc1-0ubuntu1)