Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 461750 (CVE-2013-1838) - <sys-cluster/nova-2012.2.3-r2: DoS by allocating all Fixed IPs (CVE-2013-1838)
Summary: <sys-cluster/nova-2012.2.3-r2: DoS by allocating all Fixed IPs (CVE-2013-1838)
Alias: CVE-2013-1838
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo Security
Whiteboard: ~3 [noglsa]
Depends on:
Reported: 2013-03-14 18:45 UTC by Agostino Sarubbo
Modified: 2013-03-14 21:56 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2013-03-14 18:45:41 UTC
From ${URL} :

OpenStack Security Advisory: 2013-008
CVE: CVE-2013-1838
Date: March 14, 2013
Title: Nova DoS by allocating all Fixed IPs
Reporter: Vish Ishaya (Nebula)
Products: Nova
Affects: All versions

Vish Ishaya reported a vulnerability in Nova where there is no quota for
Fixed IPs. Previously the instance quota acted as a proxy for a Fixed IP
quota, but if your configuration allows an instance to consume more than
one Fixed IP via an extension such as multinic then this is no longer
true. Running out of Fixed IPs would result in not being able to spawn
new instances.

Grizzly (development branch) fix:

Folsom fix:

Essex fix:

Comment 1 Matthew Thode ( prometheanfire ) archtester Gentoo Infrastructure gentoo-dev Security 2013-03-14 20:41:07 UTC
fixed in =sys-cluster/nova-2012.2.3-r2

removed r1 (the badness
Comment 2 Sean Amoss (RETIRED) gentoo-dev Security 2013-03-14 21:56:05 UTC
Thanks, Matthew.

Closing noglsa for ~arch only.