Bug 884293 (CVE-2012-5625)
Summary: | CVE-2012-5625 OpenStack Nova: Information leak in libvirt LVM-backed instances | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Other] Security Response | Reporter: | Kurt Seifried <kseifried> | ||||||
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> | ||||||
Status: | CLOSED ERRATA | QA Contact: | |||||||
Severity: | low | Docs Contact: | |||||||
Priority: | low | ||||||||
Version: | unspecified | CC: | apevec, jlieskov, markmc, pbrady, security-response-team, ykaul | ||||||
Target Milestone: | --- | Keywords: | Security | ||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2013-04-23 12:43:11 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Bug Depends On: | 884294 | ||||||||
Bug Blocks: | 873487, 884295 | ||||||||
Attachments: |
|
Description
Kurt Seifried
2012-12-05 20:16:45 UTC
External Reference: http://lists.openstack.org/pipermail/openstack-announce/2012-December/000059.html Created attachment 661612 [details]
openstack-nova-CVE-2012-5625.patch
Created attachment 661613 [details]
openstack-folsom-nova-CVE-2012-5625.patch
Acknowledgements: Red Hat would like to thank the OpenStack project for reporting this issue. Upstream acknowledges Eric Windisch as the original reporter of CVE-2012-5625. openstack-nova-2012.2.2-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report. openstack-nova-2012.2.2-1.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report. This issue has been addressed in following products: OpenStack Folsom for RHEL 6 Via RHSA-2013:0208 https://rhn.redhat.com/errata/RHSA-2013-0208.html |