Bug 2297217 (CVE-2024-40767) - CVE-2024-40767 openstack-nova: Regression VMDK/qcow arbitrary file access
Summary: CVE-2024-40767 openstack-nova: Regression VMDK/qcow arbitrary file access
Keywords:
Status: NEW
Alias: CVE-2024-40767
Deadline: 2024-07-23
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2297381 2297382 2297383 2300121
Blocks:
TreeView+ depends on / blocked
 
Reported: 2024-07-10 20:57 UTC by Zack Miele
Modified: 2024-08-30 15:18 UTC (History)
16 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2024:5082 0 None None None 2024-08-07 13:19:12 UTC
Red Hat Product Errata RHSA-2024:5083 0 None None None 2024-08-07 13:21:05 UTC
Red Hat Product Errata RHSA-2024:5097 0 None None None 2024-08-07 16:09:52 UTC
Red Hat Product Errata RHSA-2024:5113 0 None None None 2024-08-08 07:24:57 UTC

Description Zack Miele 2024-07-10 20:57:15 UTC 
Arnaud Morin (OVH) reported a vulnerability in Nova. By supplying a raw format image which is actually a specially crafted QCOW2 image with a backing file path or VMDK flat image with a descriptor file path, an authenticated user may convince systems to return a copy of the referenced file’s contents from the server resulting in unauthorized access to potentially sensitive data. All Nova deployments are affected.
Comment 1 errata-xmlrpc 2024-08-07 13:19:10 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 17.1 for RHEL 8

Via RHSA-2024:5082 https://access.redhat.com/errata/RHSA-2024:5082
Comment 2 errata-xmlrpc 2024-08-07 13:21:04 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 17.1 for RHEL 9

Via RHSA-2024:5083 https://access.redhat.com/errata/RHSA-2024:5083
Comment 3 errata-xmlrpc 2024-08-07 16:09:50 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 16.2

Via RHSA-2024:5097 https://access.redhat.com/errata/RHSA-2024:5097
Comment 4 errata-xmlrpc 2024-08-08 07:24:55 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 16.1

Via RHSA-2024:5113 https://access.redhat.com/errata/RHSA-2024:5113
Note You need to log in before you can comment on or make changes to this bug.