Pádraig Brady

**Nome do software vulnerável e versões afetadas: GNU Coreutils até a versão 8.23 Descrição: O problema está relacionado a um estouro de inteiro na função keycompare mb no arquivo sort.c, o que pode permitir que invasores provoquem uma negação de serviço, como uma falha no aplicativo, ou possivelmente causem outros impactos não especificados por meio de cadeias de caracteres longas. Recomendações: Para as versões do GNU Coreutils até a 8.23, atualize para uma versão posterior à 8.23 para resolver o problema.

**Name of the Vulnerable Software and Affected Versions** OpenStack Compute (Nova) versions Folsom through Havana **Description** The issue allows local users to cause a denial of service (host file system disk consumption) by transferring an image with a large virtual size that does not contain a large amount of data from Glance, when `use cow images` is set to `False`. This occurs because the virtual size of a QCOW2 image is not verified. **Recommendations** For OpenStack Compute (Nova) versions Folsom through Havana, as a temporary workaround, consider setting `use cow images` to `True` to mitigate the risk of exploitation. Restrict access to transferring images from Glance to minimize the risk of host file system disk consumption.

**Name of the Vulnerable Software and Affected Versions** OpenStack Compute (Nova) versions 2012.1.x through 2012.1.1 OpenStack Compute (Nova) versions Folsom through Folsom-2 **Description** The issue allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root. This problem exists due to an incomplete fix. **Recommendations** For OpenStack Compute (Nova) versions 2012.1.x through 2012.1.1, update to version 2012.1.2 or later. For OpenStack Compute (Nova) versions Folsom through Folsom-2, update to Folsom-3 or later. As a temporary workaround, consider restricting access to the `virt/disk/api.py` module to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenStack Compute (Nova) versions 2011.3 through 2012.2 **Description** The issue allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image. This is possible due to a flaw in the `virt/disk/api.py` module. **Recommendations** For OpenStack Compute (Nova) versions 2011.3 through 2012.2, consider restricting access to the `virt/disk/api.py` module to minimize the risk of exploitation. As a temporary workaround, avoid using the `virt/disk/api.py` module until a patch is available.