← back
CVE-2015-3241

CVE-2015-3241

EPSS 3.5%
OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allows remote authenticated users to cause a denial of service (disk, network, and other resource consumption) by resizing and then deleting an instance.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://rhn.redhat.com/errata/RHSA-2015-1723.htmlhttp://rhn.redhat.com/errata/RHSA-2015-1898.htmlhttps://github.com/openstack/ossa/blob/482576204dec96f580817b119e3166d71c757731/ossa/OSSA-2015-015.yamlhttps://launchpad.net/bugs/1387543https://security.openstack.org/ossa/OSSA-2015-015.htmlhttp://www.securityfocus.com/bid/75372