Dan Prince

**Name of the Vulnerable Software and Affected Versions** OpenStack Identity (Keystone) versions prior to 2013.1 **Description** The issue allows remote attackers to cause a denial of service, resulting in memory consumption and a crash, via multiple long requests. **Recommendations** For versions prior to 2013.1, update to version 2013.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** OpenStack Glance versions 2012.1, 2012.2 before 2012.2.3, and 2012.2.3 and earlier of Grizzly **Description** The issue allows remote authenticated users to obtain sensitive information by reading error messages. This occurs when the Swift endpoint is misconfigured or unusable in Swift single tenant mode, causing the `store/swift.py` component to log the Swift endpoint's user name and password in cleartext. **Recommendations** For OpenStack Glance version 2012.1, update to a version that includes the necessary security fixes. For OpenStack Glance version 2012.2 before 2012.2.3, update to version 2012.2.3 or later. For OpenStack Glance Grizzly versions prior to the fix, update to a version that includes the necessary security fixes. As a temporary workaround, consider restricting access to the error messages to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenStack Keystone versions Essex 2012.1.3 and earlier OpenStack Keystone versions Folsom 2012.2.3 and earlier OpenStack Keystone versions Grizzly grizzly-2 and earlier **Description** The issue allows remote attackers to cause a denial of service, specifically disk consumption, by sending many invalid token requests. This triggers the excessive generation of log entries. **Recommendations** For OpenStack Keystone versions Essex 2012.1.3 and earlier, update to a version later than 2012.1.3 to resolve the issue. For OpenStack Keystone versions Folsom 2012.2.3 and earlier, update to a version later than 2012.2.3 to resolve the issue. For OpenStack Keystone versions Grizzly grizzly-2 and earlier, update to a version later than grizzly-2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** OpenStack Compute (Nova) versions prior to 2011.3 **Description** The issue allows remote authenticated users to cause a denial of service, resulting in Nova-API log file and disk consumption, by providing a long server name. **Recommendations** For versions prior to 2011.3, update to version 2011.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** OpenStack Compute (Nova) versions 2012.1 through 2012.2 **Description** The issue allows remote authenticated users to cause a denial of service, resulting in excessive database lookup calls and server hang. This occurs when the DifferentHostFilter or SameHostFilter is enabled and a request contains many repeated IDs in the `os:scheduler hints` section. **Recommendations** For OpenStack Compute (Nova) versions 2012.1 and 2012.2, consider disabling the DifferentHostFilter or SameHostFilter as a temporary workaround to minimize the risk of exploitation. Restrict access to the `os:scheduler hints` section to prevent repeated IDs from being submitted.

**Name of the Vulnerable Software and Affected Versions** Openstack Compute (Nova) versions 2011.3 through 2012.1 **Description** The issue allows remote authenticated users with certain permissions to cause a denial of service by consuming CPU and hard drive resources via a network request that triggers a large number of iptables rules, due to the lack of limitation on the number of security group rules. **Recommendations** For versions 2011.3 through 2012.1, consider implementing a limit on the number of security group rules to prevent excessive resource consumption. As a temporary workaround, restrict access to users with permissions that could trigger a large number of iptables rules.