Ubuntu Update For Nova USN-1413-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1413-1

Solution

Please Install the Updated Packages.

Insight

Dan Prince discovered that Nova did not properly perform input validation on the length of server names. An authenticated attacker could issue requests using long server names to exhaust the storage resources containing the Nova API log file.

Affected

nova on Ubuntu 11.10

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2012-March/001648.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-1585

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for curl USN-2058-1
Ubuntu Update for clamav USN-1482-2
Ubuntu Update for bluez-utils vulnerability USN-413-1
Ubuntu Update for bogofilter vulnerability USN-980-1
Ubuntu Update for cups-filters USN-2143-1

Ubuntu Update for nova USN-1413-1

Take action and discover your vulnerabilities