CVE-2013-4469

Name of the Vulnerable Software and Affected Versions OpenStack Compute (Nova) versions Folsom through Havana

Description The issue allows local users to cause a denial of service (host file system disk consumption) by transferring an image with a large virtual size that does not contain a large amount of data from Glance, when use cow images is set to False. This occurs because the virtual size of a QCOW2 image is not verified.

Recommendations For OpenStack Compute (Nova) versions Folsom through Havana, as a temporary workaround, consider setting use cow images to True to mitigate the risk of exploitation. Restrict access to transferring images from Glance to minimize the risk of host file system disk consumption.