CVE-2013-2096 (retired)

Priority
Description
OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the
virtual size of a QCOW2 image, which allows local users to cause a denial
of service (host file system disk consumption) by creating an image with a
large virtual size that does not contain a large amount of data.
Assigned-to
jdstrand
Notes
jdstrandthe patch for this introduced a regression on Folsom. This was
not introduced in the 12.04 LTS backport and was fixed in 2012.2.3-0ubuntu2.2
on Ubuntu 12.10
Package
Source: nova (LP Ubuntu Debian)
Upstream:needs-triage
Patches:
Other:https://review.openstack.org/#/c/30373/ (folsom regression fix)
More Information

Updated: 2019-10-09 07:46:54 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)