 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2017-18191 |
| Description: | An issue was discovered in OpenStack Nova 15.x through 15.1.0 and 16.x through 16.1.1. By detaching and reattaching an encrypted volume, an attacker may access the underlying raw volume and corrupt the LUKS header, resulting in a denial of service attack on the compute host. (The same code error also results in data loss, but that is not a vulnerability because the user loses their own data.) All Nova setups supporting encrypted volumes are affected. |
| Test IDs: | None available |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2017-18191 BugTraq ID: 103104 http://www.securityfocus.com/bid/103104 http://openwall.com/lists/oss-security/2018/04/20/3 RedHat Security Advisories: RHSA-2018:2332 https://access.redhat.com/errata/RHSA-2018:2332 RedHat Security Advisories: RHSA-2018:2714 https://access.redhat.com/errata/RHSA-2018:2714 RedHat Security Advisories: RHSA-2018:2855 https://access.redhat.com/errata/RHSA-2018:2855 |