Ubuntu Update For Nova USN-1501-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1501-1

Solution

Please Install the Updated Packages.

Insight

Dan Prince discovered that the Nova scheduler, when using DifferentHostFilter or SameHostFilter, would make repeated database instance lookup calls based on passed scheduler hints. An authenticated attacker could use this to cause a denial of service.

Affected

nova on Ubuntu 12.04 LTS

Severity

Classification

CVE CVE-2012-3371
CVSS Base Score: 3.5
AV:N/AC:M/Au:S/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for puppet USN-2077-1
Ubuntu Update for hplip USN-1981-1
Ubuntu Update for python-keyring USN-1634-1
Ubuntu Update for linux USN-1344-1
Ubuntu Update for amarok vulnerability USN-657-1

Ubuntu Update for nova USN-1501-1

Take action and discover your vulnerabilities