CVE-2013-7130

NONECVSS 0.0

0.0

The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and Icehouse, when using KVM live block migration, does not properly create all expected files, which allows attackers to obtain snapshot root disk contents of other users via ephemeral storage.

🔗 References (26)

cve@mitrehttp://lists.fedoraproject.org/pipermail/package-announce/2014-February/127732.html
cve@mitrehttp://lists.fedoraproject.org/pipermail/package-announce/2014-February/127735.html
cve@mitrehttp://osvdb.org/102416
cve@mitrehttp://rhn.redhat.com/errata/RHSA-2014-0231.html
cve@mitrehttp://secunia.com/advisories/56450
cve@mitrehttp://www.openwall.com/lists/oss-security/2014/01/23/5
cve@mitrehttp://www.securityfocus.com/bid/65106
cve@mitrehttp://www.ubuntu.com/usn/USN-2247-1
cve@mitrehttps://bugs.launchpad.net/nova/+bug/1251590
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/90652
cve@mitrehttps://review.openstack.org/#/c/68658/
cve@mitrehttps://review.openstack.org/#/c/68659/
cve@mitrehttps://review.openstack.org/#/c/68660/
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2014-February/127732.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2014-February/127735.html

Is Your Infrastructure Affected by CVE-2013-7130?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-7130

📅 Published

🔄 Last Modified

🔗 References (26)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-7130?