Openstack · Openstack Compute · CVE-2013-6437
**Name of the Vulnerable Software and Affected Versions**
OpenStack Compute (Nova) versions prior to 2013.2.2
OpenStack Compute (Nova) icehouse versions prior to icehouse-2
**Description**
The issue allows remote authenticated users to cause a denial of service by creating and deleting instances with unique `os type` settings. This triggers the creation of a new ephemeral disk backing file, leading to disk consumption.
**Recommendations**
For OpenStack Compute (Nova) versions prior to 2013.2.2, update to version 2013.2.2 or later.
For OpenStack Compute (Nova) icehouse versions prior to icehouse-2, update to icehouse-2 or later.