Fedora Account System
Red Hat Associate
Red Hat Customer
Red Hat Enterprise Virtualization has an explicit permissions to allow or deny snapshot creation. This permission is evaded and unchecked during live storage migration of a vm between hosts. Long chains of snapshots may cause a performance degradation to the VM. Effectively a user who can live migrate a host, could prevent the host from starting if migrated frequently. Acknowledgements: This issue was discovered by Red Hat Enterprise Visualization Engineering.
kseifired supplied :CVE-2015-0237
(In reply to Wade Mealing from comment #0) > This permission is evaded and unchecked during live > migration of a vm between hosts. This doesn't happen in live migration of VMs, but in live STORAGE migration of a virtual disk between storage domains.
Statement: This issue affects the versions of ovirt-engine-backend as shipped with Red Hat Enterprise Virtualization 3. Red Hat Product Security has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
This issue has been addressed in the following products: RHEV Manager version 3.5 Via RHSA-2015:0888 https://rhn.redhat.com/errata/RHSA-2015-0888.html