CVE-2012-3361 (retired)

Priority
Description
virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2), Essex
(2012.1), and Diablo (2011.3) allows remote authenticated users to
overwrite arbitrary files via a symlink attack on a file in an image.
Notes
 tyhicks> Per OpenStack Vuln Mgmt Team, all Nova versions are affected
 tyhicks> The fix for this CVE was incomplete, see CVE-2012-3447
Package
Source: nova (LP Ubuntu Debian)
Upstream:not-affected (2012.2~f2)
More Information

Updated: 2019-08-23 08:50:06 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)