CVE 2012-3447
virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x before 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3361.
Related bugs and status
CVE-2012-3447 (Candidate) is related to these bugs:
Bug #917615: Inappropriate exception handling on kvm live/block migration
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 917615 | Inappropriate exception handling on kvm live/block migration | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 917615 | Inappropriate exception handling on kvm live/block migration | OpenStack Compute (nova) diablo | Undecided | Fix Released | ||
| 917615 | Inappropriate exception handling on kvm live/block migration | nova (Ubuntu) | Undecided | Fix Released | ||
| 917615 | Inappropriate exception handling on kvm live/block migration | nova (Ubuntu Precise) | Undecided | Fix Released | ||
| 917615 | Inappropriate exception handling on kvm live/block migration | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
Bug #939122: floating ips do not display in 'nova list' after association to instance
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 939122 | floating ips do not display in 'nova list' after association to instance | OpenStack Compute (nova) | Medium | Fix Released | ||
| 939122 | floating ips do not display in 'nova list' after association to instance | nova (Ubuntu) | Medium | Fix Released | ||
| 939122 | floating ips do not display in 'nova list' after association to instance | nova (Ubuntu Precise) | Undecided | Fix Released | ||
| 939122 | floating ips do not display in 'nova list' after association to instance | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 939122 | floating ips do not display in 'nova list' after association to instance | nova (Ubuntu Quantal) | Medium | Fix Released | ||
Bug #956096: Listing flavors with marker set returns 400
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 956096 | Listing flavors with marker set returns 400 | OpenStack Compute (nova) | Medium | Fix Released | ||
| 956096 | Listing flavors with marker set returns 400 | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 956096 | Listing flavors with marker set returns 400 | nova (Ubuntu) | Undecided | Fix Released | ||
| 956096 | Listing flavors with marker set returns 400 | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #971621: nova delete lxc-instance umounts the wrong rootfs
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 971621 | nova delete lxc-instance umounts the wrong rootfs | OpenStack Compute (nova) | High | Fix Released | ||
| 971621 | nova delete lxc-instance umounts the wrong rootfs | OpenStack Compute (nova) essex | High | Fix Released | ||
| 971621 | nova delete lxc-instance umounts the wrong rootfs | nova (Ubuntu) | Undecided | Fix Released | ||
| 971621 | nova delete lxc-instance umounts the wrong rootfs | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #977007: instance live migration should create virtual_size disk image
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 977007 | instance live migration should create virtual_size disk image | OpenStack Compute (nova) | Low | Fix Released | ||
| 977007 | instance live migration should create virtual_size disk image | nova (Ubuntu) | Undecided | Fix Released | ||
| 977007 | instance live migration should create virtual_size disk image | OpenStack Compute (nova) essex | Low | Fix Released | ||
| 977007 | instance live migration should create virtual_size disk image | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #985162: Firewall rules from nova-compute are not refreshed after host reboot
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 985162 | Firewall rules from nova-compute are not refreshed after host reboot | OpenStack Compute (nova) | Medium | Fix Released | ||
| 985162 | Firewall rules from nova-compute are not refreshed after host reboot | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 985162 | Firewall rules from nova-compute are not refreshed after host reboot | nova (Ubuntu) | Undecided | Fix Released | ||
| 985162 | Firewall rules from nova-compute are not refreshed after host reboot | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #986922: Call to network_get_all_by_uuids missing 'db'
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 986922 | Call to network_get_all_by_uuids missing 'db' | OpenStack Compute (nova) | Medium | Fix Released | ||
| 986922 | Call to network_get_all_by_uuids missing 'db' | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 986922 | Call to network_get_all_by_uuids missing 'db' | nova (Ubuntu) | Undecided | Fix Released | ||
| 986922 | Call to network_get_all_by_uuids missing 'db' | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #992805: test_get_console_output_file requires sudo NOPASSWD
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 992805 | test_get_console_output_file requires sudo NOPASSWD | OpenStack Compute (nova) | Medium | Fix Released | ||
| 992805 | test_get_console_output_file requires sudo NOPASSWD | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 992805 | test_get_console_output_file requires sudo NOPASSWD | nova (Ubuntu) | Undecided | Fix Released | ||
| 992805 | test_get_console_output_file requires sudo NOPASSWD | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #994935: Deleting Flavor currently in use by instance creates error
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 994935 | Deleting Flavor currently in use by instance creates error | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 994935 | Deleting Flavor currently in use by instance creates error | OpenStack Compute (nova) essex | High | Fix Released | ||
| 994935 | Deleting Flavor currently in use by instance creates error | nova (Ubuntu) | Undecided | Fix Released | ||
| 994935 | Deleting Flavor currently in use by instance creates error | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #997763: floating ips are not disassociated from instances on deletion
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 997763 | floating ips are not disassociated from instances on deletion | OpenStack Compute (nova) | High | Fix Released | ||
| 997763 | floating ips are not disassociated from instances on deletion | neutron | High | Fix Released | ||
| 997763 | floating ips are not disassociated from instances on deletion | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 997763 | floating ips are not disassociated from instances on deletion | nova (Ubuntu) | Undecided | Fix Released | ||
| 997763 | floating ips are not disassociated from instances on deletion | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #999698: qpid timeout causing compute service to crash
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 999698 | qpid timeout causing compute service to crash | OpenStack Compute (nova) | High | Fix Released | ||
| 999698 | qpid timeout causing compute service to crash | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 999698 | qpid timeout causing compute service to crash | nova (Ubuntu) | Undecided | Fix Released | ||
| 999698 | qpid timeout causing compute service to crash | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1000853: Restarting nova-network removes ip packet filters
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1000853 | Restarting nova-network removes ip packet filters | OpenStack Compute (nova) | High | Fix Released | ||
| 1000853 | Restarting nova-network removes ip packet filters | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 1000853 | Restarting nova-network removes ip packet filters | nova (Ubuntu) | Undecided | Fix Released | ||
| 1000853 | Restarting nova-network removes ip packet filters | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1004298: not able to get host total memory in xen with libvirt
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1004298 | not able to get host total memory in xen with libvirt | OpenStack Compute (nova) | High | Fix Released | ||
| 1004298 | not able to get host total memory in xen with libvirt | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1004298 | not able to get host total memory in xen with libvirt | nova (Ubuntu) | Undecided | Fix Released | ||
| 1004298 | not able to get host total memory in xen with libvirt | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1006664: euca-describe-keypair NonExistent returns 200
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1006664 | euca-describe-keypair NonExistent returns 200 | OpenStack Compute (nova) | Low | Fix Released | ||
| 1006664 | euca-describe-keypair NonExistent returns 200 | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 1006664 | euca-describe-keypair NonExistent returns 200 | nova (Ubuntu) | Undecided | Fix Released | ||
| 1006664 | euca-describe-keypair NonExistent returns 200 | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1007573: affinity filters don't work if scheduler_hints is None
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1007573 | affinity filters don't work if scheduler_hints is None | OpenStack Compute (nova) | Medium | Fix Released | ||
| 1007573 | affinity filters don't work if scheduler_hints is None | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 1007573 | affinity filters don't work if scheduler_hints is None | nova (Ubuntu) | Undecided | Fix Released | ||
| 1007573 | affinity filters don't work if scheduler_hints is None | nova (Ubuntu Precise) | Critical | Fix Released | ||
Bug #1012374: impl_qpid doesn't ACK messages
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1012374 | impl_qpid doesn't ACK messages | OpenStack Compute (nova) | High | Fix Released | ||
| 1012374 | impl_qpid doesn't ACK messages | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 1012374 | impl_qpid doesn't ACK messages | nova (Ubuntu) | Undecided | Fix Released | ||
| 1012374 | impl_qpid doesn't ACK messages | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1013147: Missing filters due to nova-rootwrap hardcoding paths
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1013147 | Missing filters due to nova-rootwrap hardcoding paths | OpenStack Compute (nova) | Wishlist | Fix Released | ||
| 1013147 | Missing filters due to nova-rootwrap hardcoding paths | OpenStack Compute (nova) essex | Wishlist | Fix Released | ||
| 1013147 | Missing filters due to nova-rootwrap hardcoding paths | nova (Ubuntu) | Undecided | Fix Released | ||
| 1013147 | Missing filters due to nova-rootwrap hardcoding paths | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1013689: cannot umount guestfs
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1013689 | cannot umount guestfs | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1013689 | cannot umount guestfs | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1013689 | cannot umount guestfs | nova (Ubuntu) | Undecided | Fix Released | ||
| 1013689 | cannot umount guestfs | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1013782: Stop/start a KVM instance with volumes attached produces an error state
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1013782 | Stop/start a KVM instance with volumes attached produces an error state | nova (Ubuntu) | High | Fix Released | ||
| 1013782 | Stop/start a KVM instance with volumes attached produces an error state | OpenStack Compute (nova) | High | Fix Released | ||
| 1013782 | Stop/start a KVM instance with volumes attached produces an error state | nova (Ubuntu Precise) | High | Fix Released | ||
| 1013782 | Stop/start a KVM instance with volumes attached produces an error state | nova (Ubuntu Quantal) | High | Fix Released | ||
| 1013782 | Stop/start a KVM instance with volumes attached produces an error state | OpenStack Compute (nova) essex | High | Fix Released | ||
Bug #1014769: NoMoreFixedIps: Zero fixed ips available. Nova seems leaking them.
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1014769 | NoMoreFixedIps: Zero fixed ips available. Nova seems leaking them. | OpenStack Compute (nova) | Critical | Fix Released | ||
| 1014769 | NoMoreFixedIps: Zero fixed ips available. Nova seems leaking them. | OpenStack Compute (nova) essex | Critical | Fix Released | ||
| 1014769 | NoMoreFixedIps: Zero fixed ips available. Nova seems leaking them. | nova (Ubuntu) | Undecided | Fix Released | ||
| 1014769 | NoMoreFixedIps: Zero fixed ips available. Nova seems leaking them. | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1014925: API 'v1.1/{tenant_id}/os-hosts' does not return a list of hosts
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1014925 | API 'v1.1/{tenant_id}/os-hosts' does not return a list of hosts | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1014925 | API 'v1.1/{tenant_id}/os-hosts' does not return a list of hosts | nova (Ubuntu) | Undecided | Fix Released | ||
| 1014925 | API 'v1.1/{tenant_id}/os-hosts' does not return a list of hosts | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 1014925 | API 'v1.1/{tenant_id}/os-hosts' does not return a list of hosts | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1015531: Remote arbitrary file corruption / creation flaw via injected files
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1015531 | Remote arbitrary file corruption / creation flaw via injected files | OpenStack Compute (nova) | Critical | Fix Released | ||
| 1015531 | Remote arbitrary file corruption / creation flaw via injected files | OpenStack Compute (nova) essex | Critical | Fix Released | ||
| 1015531 | Remote arbitrary file corruption / creation flaw via injected files | nova (Ubuntu) | Undecided | Fix Released | ||
| 1015531 | Remote arbitrary file corruption / creation flaw via injected files | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1016273: ram_allocation_ratio does not work
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1016273 | ram_allocation_ratio does not work | OpenStack Compute (nova) | High | Fix Released | ||
| 1016273 | ram_allocation_ratio does not work | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1016273 | ram_allocation_ratio does not work | nova (Ubuntu) | Undecided | Fix Released | ||
| 1016273 | ram_allocation_ratio does not work | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1017418: NoMoreFloatingIps: Zero floating ips available after repeatedly creating and destroying instances over time
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1017418 | NoMoreFloatingIps: Zero floating ips available after repeatedly creating and destroying instances over time | OpenStack Compute (nova) | Critical | Fix Released | ||
| 1017418 | NoMoreFloatingIps: Zero floating ips available after repeatedly creating and destroying instances over time | OpenStack Compute (nova) essex | Critical | Fix Released | ||
| 1017418 | NoMoreFloatingIps: Zero floating ips available after repeatedly creating and destroying instances over time | nova (Ubuntu) | Undecided | Fix Released | ||
| 1017418 | NoMoreFloatingIps: Zero floating ips available after repeatedly creating and destroying instances over time | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1018586: cleanup_file_locks does not remove stale sentinel files
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1018586 | cleanup_file_locks does not remove stale sentinel files | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1018586 | cleanup_file_locks does not remove stale sentinel files | nova (Ubuntu) | High | Fix Released | ||
| 1018586 | cleanup_file_locks does not remove stale sentinel files | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1018586 | cleanup_file_locks does not remove stale sentinel files | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1018721: Launching with source groups under load produces lazy load error
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1018721 | Launching with source groups under load produces lazy load error | OpenStack Compute (nova) | High | Fix Released | ||
| 1018721 | Launching with source groups under load produces lazy load error | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1018721 | Launching with source groups under load produces lazy load error | nova (Ubuntu) | Undecided | Fix Released | ||
| 1018721 | Launching with source groups under load produces lazy load error | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1020634: [nova][volumes] Exceeding volumes quotas logs "VolumeSizeTooLarge" instead of "VolumeLimitExceeded"
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1020634 | [nova][volumes] Exceeding volumes quotas logs "VolumeSizeTooLarge" instead of "VolumeLimitExceeded" | OpenStack Compute (nova) | Low | Fix Released | ||
| 1020634 | [nova][volumes] Exceeding volumes quotas logs "VolumeSizeTooLarge" instead of "VolumeLimitExceeded" | OpenStack Compute (nova) essex | Low | Fix Released | ||
| 1020634 | [nova][volumes] Exceeding volumes quotas logs "VolumeSizeTooLarge" instead of "VolumeLimitExceeded" | nova (Ubuntu) | Undecided | Fix Released | ||
| 1020634 | [nova][volumes] Exceeding volumes quotas logs "VolumeSizeTooLarge" instead of "VolumeLimitExceeded" | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1021340: Race condition in network/deallocate_for_instance() leads to security issue
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1021340 | Race condition in network/deallocate_for_instance() leads to security issue | OpenStack Compute (nova) | High | Fix Released | ||
| 1021340 | Race condition in network/deallocate_for_instance() leads to security issue | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1021340 | Race condition in network/deallocate_for_instance() leads to security issue | nova (Ubuntu) | Undecided | Fix Released | ||
| 1021340 | Race condition in network/deallocate_for_instance() leads to security issue | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1021352: Deallocation of fixed IP occurs before security group refresh – leading to potential security issue in error / race conditions
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1021352 | Deallocation of fixed IP occurs before security group refresh – leading to potential security issue in error / race conditions | OpenStack Compute (nova) | Medium | Fix Released | ||
| 1021352 | Deallocation of fixed IP occurs before security group refresh – leading to potential security issue in error / race conditions | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 1021352 | Deallocation of fixed IP occurs before security group refresh – leading to potential security issue in error / race conditions | nova (Ubuntu) | Undecided | Fix Released | ||
| 1021352 | Deallocation of fixed IP occurs before security group refresh – leading to potential security issue in error / race conditions | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1021373: [nova][volumes] Exceeding volumes, gigabytes and floating_ips quotas returns general uninformative HTTP 500 error
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1021373 | [nova][volumes] Exceeding volumes, gigabytes and floating_ips quotas returns general uninformative HTTP 500 error | OpenStack Compute (nova) | Medium | Fix Released | ||
| 1021373 | [nova][volumes] Exceeding volumes, gigabytes and floating_ips quotas returns general uninformative HTTP 500 error | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 1021373 | [nova][volumes] Exceeding volumes, gigabytes and floating_ips quotas returns general uninformative HTTP 500 error | nova (Ubuntu) | Undecided | Fix Released | ||
| 1021373 | [nova][volumes] Exceeding volumes, gigabytes and floating_ips quotas returns general uninformative HTTP 500 error | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1022036: metadata injection is broken in xen
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1022036 | metadata injection is broken in xen | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1022036 | metadata injection is broken in xen | OpenStack Compute (nova) essex | Low | Fix Released | ||
| 1022036 | metadata injection is broken in xen | nova (Ubuntu) | Undecided | Fix Released | ||
| 1022036 | metadata injection is broken in xen | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1027105: Restarting nova-compute removes ip packet filters
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1027105 | Restarting nova-compute removes ip packet filters | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1027105 | Restarting nova-compute removes ip packet filters | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1027105 | Restarting nova-compute removes ip packet filters | nova (Ubuntu) | Undecided | Fix Released | ||
| 1027105 | Restarting nova-compute removes ip packet filters | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1027984: nova testsuite errors on newer versions of python-boto (e.g. 2.5.2)
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1027984 | nova testsuite errors on newer versions of python-boto (e.g. 2.5.2) | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1027984 | nova testsuite errors on newer versions of python-boto (e.g. 2.5.2) | OpenStack Compute (nova) essex | Low | Fix Released | ||
| 1027984 | nova testsuite errors on newer versions of python-boto (e.g. 2.5.2) | nova (Ubuntu) | Undecided | Fix Released | ||
| 1027984 | nova testsuite errors on newer versions of python-boto (e.g. 2.5.2) | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1029463: Libvirt driver reports incorrect error when volume-detach fails
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1029463 | Libvirt driver reports incorrect error when volume-detach fails | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1029463 | Libvirt driver reports incorrect error when volume-detach fails | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
| 1029463 | Libvirt driver reports incorrect error when volume-detach fails | nova (Ubuntu) | Undecided | Fix Released | ||
| 1029463 | Libvirt driver reports incorrect error when volume-detach fails | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1030430: qpid_heartbeat setting in ineffective
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1030430 | qpid_heartbeat setting in ineffective | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1030430 | qpid_heartbeat setting in ineffective | OpenStack Compute (nova) essex | Low | Fix Released | ||
| 1030430 | qpid_heartbeat setting in ineffective | nova (Ubuntu) | Undecided | Fix Released | ||
| 1030430 | qpid_heartbeat setting in ineffective | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1031311: [OSSA 2012-011] CVE-2012-3361 not fully addressed
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1031311 | [OSSA 2012-011] CVE-2012-3361 not fully addressed | OpenStack Compute (nova) | Critical | Fix Released | ||
| 1031311 | [OSSA 2012-011] CVE-2012-3361 not fully addressed | OpenStack Compute (nova) essex | Critical | Fix Released | ||
| 1031311 | [OSSA 2012-011] CVE-2012-3361 not fully addressed | nova (Ubuntu) | Undecided | Fix Released | ||
| 1031311 | [OSSA 2012-011] CVE-2012-3361 not fully addressed | nova (Ubuntu Precise) | Undecided | Fix Released | ||
| 1031311 | [OSSA 2012-011] CVE-2012-3361 not fully addressed | OpenStack Security Advisory | Undecided | Fix Released | ||
Bug #1033178: pycrypto is unused and the existing code is potentially insecure to use
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1033178 | pycrypto is unused and the existing code is potentially insecure to use | OpenStack Compute (nova) | Medium | Fix Released | ||
| 1033178 | pycrypto is unused and the existing code is potentially insecure to use | OpenStack Compute (nova) essex | Medium | Fix Released | ||
| 1033178 | pycrypto is unused and the existing code is potentially insecure to use | nova (Ubuntu) | Undecided | Fix Released | ||
| 1033178 | pycrypto is unused and the existing code is potentially insecure to use | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1036902: Block storage connections are NOT restored on system reboot
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1036902 | Block storage connections are NOT restored on system reboot | OpenStack Compute (nova) | Undecided | Fix Released | ||
| 1036902 | Block storage connections are NOT restored on system reboot | nova (Ubuntu) | Undecided | Fix Released | ||
| 1036902 | Block storage connections are NOT restored on system reboot | nova (Ubuntu Precise) | Undecided | Fix Released | ||
| 1036902 | Block storage connections are NOT restored on system reboot | OpenStack Compute (nova) essex | Undecided | Fix Released | ||
Bug #1038266: Deleted floating ips can cause instance delete to fail
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1038266 | Deleted floating ips can cause instance delete to fail | OpenStack Compute (nova) | High | Fix Released | ||
| 1038266 | Deleted floating ips can cause instance delete to fail | OpenStack Compute (nova) essex | High | Fix Released | ||
| 1038266 | Deleted floating ips can cause instance delete to fail | nova (Ubuntu) | Undecided | Fix Released | ||
| 1038266 | Deleted floating ips can cause instance delete to fail | nova (Ubuntu Precise) | Undecided | Fix Released | ||
Bug #1041120: Meta bug for tracking Openstack Stable Updates
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1041120 | Meta bug for tracking Openstack Stable Updates | nova (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | glance (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | keystone (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | horizon (Ubuntu) | Undecided | Invalid | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | glance (Ubuntu Precise) | Undecided | Fix Released | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | horizon (Ubuntu Precise) | Undecided | Fix Released | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | keystone (Ubuntu Precise) | Undecided | Fix Released | ||
| 1041120 | Meta bug for tracking Openstack Stable Updates | nova (Ubuntu Precise) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
