Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-3280 (GCVE-0-2015-3280)
Vulnerability from cvelistv5
Published
2015-10-26 17:00
Modified
2024-08-06 05:39
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T05:39:32.083Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2015:1898",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-1898.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://launchpad.net/bugs/1392527"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"name": "76553",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/76553"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.openstack.org/ossa/OSSA-2015-017.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2015-09-01T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-11-25T19:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2015:1898",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-1898.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://launchpad.net/bugs/1392527"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"name": "76553",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/76553"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.openstack.org/ossa/OSSA-2015-017.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2015-3280",
"datePublished": "2015-10-26T17:00:00",
"dateReserved": "2015-04-10T00:00:00",
"dateUpdated": "2024-08-06T05:39:32.083Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2015-3280\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2015-10-26T17:59:03.747\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.\"},{\"lang\":\"es\",\"value\":\"OpenStack Compute (nova) en versiones anteriores a 2014.2.4 (juno) y 2015.1.x en versiones anteriores a 2015.1.2 (kilo) no elimina adecuadamente casos desde los nodos de c\u00f3mputo, lo que permite a usuarios remotos autenticados provocar una denegaci\u00f3n de servicio (consumo del disco) borrando instancias cuando entra en el estado de cambio de tama\u00f1o.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:N/I:N/A:C\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2014.2\",\"versionEndExcluding\":\"2014.2.4\",\"matchCriteriaId\":\"8E483493-8EAA-4772-85E6-8F05C8F0C9F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2015.1.0\",\"versionEndExcluding\":\"2015.1.2\",\"matchCriteriaId\":\"6F2937D9-1DB2-4C70-B5AA-E9E847090F6E\"}]}]}],\"references\":[{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-1898.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/76553\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://launchpad.net/bugs/1392527\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.openstack.org/ossa/OSSA-2015-017.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-1898.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/76553\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://launchpad.net/bugs/1392527\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.openstack.org/ossa/OSSA-2015-017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
rhsa-2015:1898
Vulnerability from csaf_redhat
Published
2015-10-15 12:28
Modified
2025-08-01 23:36
Summary
Red Hat Security Advisory: openstack-nova security update
Notes
Topic
Updated openstack-nova packages that fix one security issue and several
bugs, and add various enhancements are now available for Red Hat
Enterprise Linux OpenStack Platform 5.0, 6.0, and 7.0
Red Hat Product Security has rated this update as having Moderate security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.
Details
OpenStack Compute (nova) launches and schedules large networks of virtual
machines, creating a redundant and scalable cloud computing platform.
Compute provides the software, control panels, and APIs required to
orchestrate a cloud, including running virtual machine instances and
controlling access through users and projects.
A denial of service flaw was found in the OpenStack Compute instance
migration process. Because the migration process does not terminate
when an instance is deleted, an authenticated user could bypass
user quota and deplete all available disk space by repeatedly re-sizing
and deleting an instance. (CVE-2015-3241)
A flaw was found in the way OpenStack Compute handled the resize
state. If an authenticated user deleted an instance while it was in the
resize state, it could cause the original instance to not be deleted from
the compute node it was running on, allowing the user to cause a denial
of service. (CVE-2015-3280)
Note: CVE-2015-3241 was already addressed in Red Hat Enterprise Linux
OpenStack Platform 7.0 in a previous release.
Red Hat would like to thank the OpenStack project for reporting these
issues. Upstream acknowledges George Shuklin of Webzilla LTD as the
original reporter of CVE-2015-3241, and George Shuklin from Webzilla LTD
and Tushar Patil from NTT DATA, Inc. as the original reporters of
CVE-2015-3280.
All openstack-nova users are advised to upgrade to these updated packages,
which correct these issues and add these enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated openstack-nova packages that fix one security issue and several\nbugs, and add various enhancements are now available for Red Hat\nEnterprise Linux OpenStack Platform 5.0, 6.0, and 7.0\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenStack Compute (nova) launches and schedules large networks of virtual\nmachines, creating a redundant and scalable cloud computing platform.\nCompute provides the software, control panels, and APIs required to\norchestrate a cloud, including running virtual machine instances and\ncontrolling access through users and projects.\n\nA denial of service flaw was found in the OpenStack Compute instance\nmigration process. Because the migration process does not terminate\nwhen an instance is deleted, an authenticated user could bypass\nuser quota and deplete all available disk space by repeatedly re-sizing\nand deleting an instance. (CVE-2015-3241)\n\nA flaw was found in the way OpenStack Compute handled the resize\nstate. If an authenticated user deleted an instance while it was in the\nresize state, it could cause the original instance to not be deleted from\nthe compute node it was running on, allowing the user to cause a denial\nof service. (CVE-2015-3280)\n\nNote: CVE-2015-3241 was already addressed in Red Hat Enterprise Linux\nOpenStack Platform 7.0 in a previous release.\n\nRed Hat would like to thank the OpenStack project for reporting these\nissues. Upstream acknowledges George Shuklin of Webzilla LTD as the\noriginal reporter of CVE-2015-3241, and George Shuklin from Webzilla LTD\nand Tushar Patil from NTT DATA, Inc. as the original reporters of\nCVE-2015-3280.\n\nAll openstack-nova users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:1898",
"url": "https://access.redhat.com/errata/RHSA-2015:1898"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1232782",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1232782"
},
{
"category": "external",
"summary": "1257942",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1257942"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_1898.json"
}
],
"title": "Red Hat Security Advisory: openstack-nova security update",
"tracking": {
"current_release_date": "2025-08-01T23:36:55+00:00",
"generator": {
"date": "2025-08-01T23:36:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2015:1898",
"initial_release_date": "2015-10-15T12:28:37+00:00",
"revision_history": [
{
"date": "2015-10-15T12:28:37+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-10-15T12:28:37+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-01T23:36:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product": {
"name": "Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:7::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product": {
"name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:5::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product": {
"name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:5::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product": {
"name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:6::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-console@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-compute@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-objectstore@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-scheduler@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-doc@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-conductor@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-novncproxy@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cert@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-common@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-network@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cells@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-api@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python-nova-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "python-nova-0:2015.1.1-3.el7ost.noarch",
"product_id": "python-nova-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-nova@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-spicehtml5proxy@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"product": {
"name": "openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"product_id": "openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-serialproxy@2015.1.1-3.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cert@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-console@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python-nova-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "python-nova-0:2014.1.5-3.el6ost.noarch",
"product_id": "python-nova-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-nova@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-api@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-compute@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-scheduler@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-network@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-serialproxy@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-doc@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cells@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-conductor@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-novncproxy@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-common@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"product": {
"name": "openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"product_id": "openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-objectstore@2014.1.5-3.el6ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cells@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cert@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-common@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-novncproxy@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-serialproxy@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-doc@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python-nova-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "python-nova-0:2014.1.5-5.el7ost.noarch",
"product_id": "python-nova-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-nova@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-scheduler@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-network@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-conductor@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-compute@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-api@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-console@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"product": {
"name": "openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"product_id": "openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-objectstore@2014.1.5-5.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-compute@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cert@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-objectstore@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-api@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-console@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-novncproxy@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-serialproxy@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-common@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-scheduler@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-network@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-conductor@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-cells@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python-nova-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "python-nova-0:2014.2.3-31.el7ost.noarch",
"product_id": "python-nova-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-nova@2014.2.3-31.el7ost?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"product": {
"name": "openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"product_id": "openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova-doc@2014.2.3-31.el7ost?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "openstack-nova-0:2015.1.1-3.el7ost.src",
"product": {
"name": "openstack-nova-0:2015.1.1-3.el7ost.src",
"product_id": "openstack-nova-0:2015.1.1-3.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2015.1.1-3.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-0:2014.1.5-3.el6ost.src",
"product": {
"name": "openstack-nova-0:2014.1.5-3.el6ost.src",
"product_id": "openstack-nova-0:2014.1.5-3.el6ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2014.1.5-3.el6ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-0:2014.1.5-5.el7ost.src",
"product": {
"name": "openstack-nova-0:2014.1.5-5.el7ost.src",
"product_id": "openstack-nova-0:2014.1.5-5.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2014.1.5-5.el7ost?arch=src"
}
}
},
{
"category": "product_version",
"name": "openstack-nova-0:2014.2.3-31.el7ost.src",
"product": {
"name": "openstack-nova-0:2014.2.3-31.el7ost.src",
"product_id": "openstack-nova-0:2014.2.3-31.el7ost.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openstack-nova@2014.2.3-31.el7ost?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2014.1.5-3.el6ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.src"
},
"product_reference": "openstack-nova-0:2014.1.5-3.el6ost.src",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-api-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-cells-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cert-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-cert-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-common-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-common-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-compute-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-console-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-doc-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-network-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-network-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-0:2014.1.5-3.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
"product_id": "6Server-RH6-RHOS-5.0:python-nova-0:2014.1.5-3.el6ost.noarch"
},
"product_reference": "python-nova-0:2014.1.5-3.el6ost.noarch",
"relates_to_product_reference": "6Server-RH6-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2014.1.5-5.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.src"
},
"product_reference": "openstack-nova-0:2014.1.5-5.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-api-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-cells-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cert-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-cert-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-common-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-common-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-compute-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-console-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-doc-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-network-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-network-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-0:2014.1.5-5.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
"product_id": "7Server-RH7-RHOS-5.0:python-nova-0:2014.1.5-5.el7ost.noarch"
},
"product_reference": "python-nova-0:2014.1.5-5.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-5.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2014.2.3-31.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.src"
},
"product_reference": "openstack-nova-0:2014.2.3-31.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-api-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-cells-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cert-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-cert-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-common-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-common-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-compute-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-console-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-doc-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-network-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-network-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-0:2014.2.3-31.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
"product_id": "7Server-RH7-RHOS-6.0:python-nova-0:2014.2.3-31.el7ost.noarch"
},
"product_reference": "python-nova-0:2014.2.3-31.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-0:2015.1.1-3.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.src"
},
"product_reference": "openstack-nova-0:2015.1.1-3.el7ost.src",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-api-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-cells-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cert-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-cert-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-common-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-common-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-compute-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-console-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-doc-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-network-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-network-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-0:2015.1.1-3.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7",
"product_id": "7Server-RH7-RHOS-7.0:python-nova-0:2015.1.1-3.el7ost.noarch"
},
"product_reference": "python-nova-0:2015.1.1-3.el7ost.noarch",
"relates_to_product_reference": "7Server-RH7-RHOS-7.0"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"OpenStack project"
]
},
{
"names": [
"George Shuklin"
],
"organization": "Webzilla LTD",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2015-3241",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2015-06-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1232782"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in the OpenStack Compute (nova) instance migration process. Because the migration process does not terminate when an instance is deleted, an authenticated user could bypass user quota and deplete all available disk space by repeatedly re-sizing and deleting an instance.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openstack-nova: Nova instance migration process does not stop when instance is deleted",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.src",
"6Server-RH6-RHOS-5.0:openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:python-nova-0:2014.1.5-3.el6ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.src",
"7Server-RH7-RHOS-5.0:openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:python-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.src",
"7Server-RH7-RHOS-7.0:openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:python-nova-0:2015.1.1-3.el7ost.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-3241"
},
{
"category": "external",
"summary": "RHBZ#1232782",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1232782"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-3241",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-3241"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-3241",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3241"
}
],
"release_date": "2015-06-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-10-15T12:28:37+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.src",
"6Server-RH6-RHOS-5.0:openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:python-nova-0:2014.1.5-3.el6ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.src",
"7Server-RH7-RHOS-5.0:openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:python-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.src",
"7Server-RH7-RHOS-7.0:openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:python-nova-0:2015.1.1-3.el7ost.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:1898"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.src",
"6Server-RH6-RHOS-5.0:openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:python-nova-0:2014.1.5-3.el6ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.src",
"7Server-RH7-RHOS-5.0:openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:python-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.src",
"7Server-RH7-RHOS-7.0:openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:python-nova-0:2015.1.1-3.el7ost.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openstack-nova: Nova instance migration process does not stop when instance is deleted"
},
{
"acknowledgments": [
{
"names": [
"OpenStack upstream project"
]
}
],
"cve": "CVE-2015-3280",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2015-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1257942"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way OpenStack Compute (nova) handled the resize state. If an authenticated user deleted an instance while it was in the resize state, it could cause the original instance to not be deleted from the compute node it was running on, allowing the user to cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openstack-nova: Deleting instances in resize state fails",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.src",
"6Server-RH6-RHOS-5.0:openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:python-nova-0:2014.1.5-3.el6ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.src",
"7Server-RH7-RHOS-5.0:openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:python-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.src",
"7Server-RH7-RHOS-7.0:openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:python-nova-0:2015.1.1-3.el7ost.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-3280"
},
{
"category": "external",
"summary": "RHBZ#1257942",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1257942"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-3280",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-3280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-3280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3280"
}
],
"release_date": "2015-09-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-10-15T12:28:37+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.src",
"6Server-RH6-RHOS-5.0:openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:python-nova-0:2014.1.5-3.el6ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.src",
"7Server-RH7-RHOS-5.0:openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:python-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.src",
"7Server-RH7-RHOS-7.0:openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:python-nova-0:2015.1.1-3.el7ost.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:1898"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-0:2014.1.5-3.el6ost.src",
"6Server-RH6-RHOS-5.0:openstack-nova-api-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cells-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-cert-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-common-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-compute-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-console-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-doc-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-network-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-3.el6ost.noarch",
"6Server-RH6-RHOS-5.0:python-nova-0:2014.1.5-3.el6ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-0:2014.1.5-5.el7ost.src",
"7Server-RH7-RHOS-5.0:openstack-nova-api-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cells-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-cert-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-common-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-compute-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-conductor-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-console-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-doc-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-network-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-novncproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-objectstore-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-scheduler-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:openstack-nova-serialproxy-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-5.0:python-nova-0:2014.1.5-5.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-0:2014.2.3-31.el7ost.src",
"7Server-RH7-RHOS-6.0:openstack-nova-api-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cells-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-cert-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-common-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-compute-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-conductor-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-console-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-doc-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-network-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-novncproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-objectstore-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-scheduler-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:openstack-nova-serialproxy-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-6.0:python-nova-0:2014.2.3-31.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-0:2015.1.1-3.el7ost.src",
"7Server-RH7-RHOS-7.0:openstack-nova-api-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cells-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-cert-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-common-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-compute-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-conductor-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-console-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-doc-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-network-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-novncproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-objectstore-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-scheduler-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-serialproxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:openstack-nova-spicehtml5proxy-0:2015.1.1-3.el7ost.noarch",
"7Server-RH7-RHOS-7.0:python-nova-0:2015.1.1-3.el7ost.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openstack-nova: Deleting instances in resize state fails"
}
]
}
suse-su-2015:2220-1
Vulnerability from csaf_suse
Published
2015-12-07 14:44
Modified
2015-12-07 14:44
Summary
Security update for openstack-nova and openstack-neutron
Notes
Title of the patch
Security update for openstack-nova and openstack-neutron
Description of the patch
This update for openstack-nova and openstack-neutron provides various fixes and improvements.
openstack-nova:
- Fix instance filtering. (bsc#927625)
- Remove error messages from multipath command output before parsing. (bsc#949529)
- Fix live-migration usage of the wrong connector information.
- Added requirement for memcached to python-nova. (bsc#942457)
- Don't expect meta attributes in object_compat that aren't in the db obj. (bsc#949070, CVE-2015-7713)
- Kill rsync/scp processes before deleting instance. (bsc#935017, CVE-2015-3241)
- Sync process utils from oslo for execute callbacks. (bsc#935017, CVE-2015-3241)
- Fix rebuild of an instance with a volume attached.
- Fixes _cleanup_rbd code to capture ImageBusy exception.
- Don't try to confine a non-NUMA instance.
- Include blank volumes in the block device mapping (bsc#945923)
- Delete orphaned instance files from compute nodes (bsc#944178, CVE-2015-3280)
openstack-neutron:
- Fix usage_audit to work with ML2.
- Fix UDP offloading issue with virtio VMs. (bsc#948704)
- Fix ipset can't be destroyed when last rule is deleted.
- Add ARP spoofing protection for LinuxBridge agent.
- Don't use ARP responder for IPv6 addresses in ovs.
- Stop device_owner from being set to 'network:*'. (bsc#943648, CVE-2015-5240)
- NSX-mh: use router_distributed flag.
- NSX-mh: Failover controller connections on socket failures.
- NSX-mh: Prevent failures on router delete.
Patchnames
SUSE-SLE12-CLOUD-5-2015-953
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openstack-nova and openstack-neutron",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update for openstack-nova and openstack-neutron provides various fixes and improvements.\n\nopenstack-nova:\n\n- Fix instance filtering. (bsc#927625)\n- Remove error messages from multipath command output before parsing. (bsc#949529)\n- Fix live-migration usage of the wrong connector information.\n- Added requirement for memcached to python-nova. (bsc#942457)\n- Don\u0027t expect meta attributes in object_compat that aren\u0027t in the db obj. (bsc#949070, CVE-2015-7713)\n- Kill rsync/scp processes before deleting instance. (bsc#935017, CVE-2015-3241)\n- Sync process utils from oslo for execute callbacks. (bsc#935017, CVE-2015-3241)\n- Fix rebuild of an instance with a volume attached.\n- Fixes _cleanup_rbd code to capture ImageBusy exception.\n- Don\u0027t try to confine a non-NUMA instance.\n- Include blank volumes in the block device mapping (bsc#945923)\n- Delete orphaned instance files from compute nodes (bsc#944178, CVE-2015-3280)\n\nopenstack-neutron:\n\n- Fix usage_audit to work with ML2.\n- Fix UDP offloading issue with virtio VMs. (bsc#948704)\n- Fix ipset can\u0027t be destroyed when last rule is deleted.\n- Add ARP spoofing protection for LinuxBridge agent.\n- Don\u0027t use ARP responder for IPv6 addresses in ovs.\n- Stop device_owner from being set to \u0027network:*\u0027. (bsc#943648, CVE-2015-5240)\n- NSX-mh: use router_distributed flag.\n- NSX-mh: Failover controller connections on socket failures.\n- NSX-mh: Prevent failures on router delete.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE12-CLOUD-5-2015-953",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_2220-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:2220-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20152220-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:2220-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-December/001724.html"
},
{
"category": "self",
"summary": "SUSE Bug 927625",
"url": "https://bugzilla.suse.com/927625"
},
{
"category": "self",
"summary": "SUSE Bug 935017",
"url": "https://bugzilla.suse.com/935017"
},
{
"category": "self",
"summary": "SUSE Bug 935263",
"url": "https://bugzilla.suse.com/935263"
},
{
"category": "self",
"summary": "SUSE Bug 939691",
"url": "https://bugzilla.suse.com/939691"
},
{
"category": "self",
"summary": "SUSE Bug 942457",
"url": "https://bugzilla.suse.com/942457"
},
{
"category": "self",
"summary": "SUSE Bug 943648",
"url": "https://bugzilla.suse.com/943648"
},
{
"category": "self",
"summary": "SUSE Bug 944178",
"url": "https://bugzilla.suse.com/944178"
},
{
"category": "self",
"summary": "SUSE Bug 945923",
"url": "https://bugzilla.suse.com/945923"
},
{
"category": "self",
"summary": "SUSE Bug 948704",
"url": "https://bugzilla.suse.com/948704"
},
{
"category": "self",
"summary": "SUSE Bug 949070",
"url": "https://bugzilla.suse.com/949070"
},
{
"category": "self",
"summary": "SUSE Bug 949529",
"url": "https://bugzilla.suse.com/949529"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3221 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3241 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3280 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5240 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-7713 page",
"url": "https://www.suse.com/security/cve/CVE-2015-7713/"
}
],
"title": "Security update for openstack-nova and openstack-neutron",
"tracking": {
"current_release_date": "2015-12-07T14:44:50Z",
"generator": {
"date": "2015-12-07T14:44:50Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:2220-1",
"initial_release_date": "2015-12-07T14:44:50Z",
"revision_history": [
{
"date": "2015-12-07T14:44:50Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"product": {
"name": "openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"product_id": "openstack-nova-2014.2.4~a0~dev80-14.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"product": {
"name": "openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"product_id": "openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"product": {
"name": "python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"product_id": "python-neutron-2014.2.4~a0~dev103-10.3.noarch"
}
},
{
"category": "product_version",
"name": "python-nova-2014.2.4~a0~dev80-14.1.noarch",
"product": {
"name": "python-nova-2014.2.4~a0~dev80-14.1.noarch",
"product_id": "python-nova-2014.2.4~a0~dev80-14.1.noarch"
}
},
{
"category": "product_version",
"name": "python-python-memcached-1.54-2.1.noarch",
"product": {
"name": "python-python-memcached-1.54-2.1.noarch",
"product_id": "python-python-memcached-1.54-2.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product": {
"name": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-sle12-cloud-compute:5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-2014.2.4~a0~dev80-14.1.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch"
},
"product_reference": "openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch"
},
"product_reference": "openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-2014.2.4~a0~dev103-10.3.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch"
},
"product_reference": "python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-2014.2.4~a0~dev80-14.1.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch"
},
"product_reference": "python-nova-2014.2.4~a0~dev80-14.1.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-python-memcached-1.54-2.1.noarch as component of SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5",
"product_id": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
},
"product_reference": "python-python-memcached-1.54-2.1.noarch",
"relates_to_product_reference": "SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-3221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3221"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Neutron before 2014.2.4 (juno) and 2015.1.x before 2015.1.1 (kilo), when using the IPTables firewall driver, allows remote authenticated users to cause a denial of service (L2 agent crash) by adding an address pair that is rejected by the ipset tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3221",
"url": "https://www.suse.com/security/cve/CVE-2015-3221"
},
{
"category": "external",
"summary": "SUSE Bug 935263 for CVE-2015-3221",
"url": "https://bugzilla.suse.com/935263"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:44:50Z",
"details": "low"
}
],
"title": "CVE-2015-3221"
},
{
"cve": "CVE-2015-3241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3241"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allows remote authenticated users to cause a denial of service (disk, network, and other resource consumption) by resizing and then deleting an instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3241",
"url": "https://www.suse.com/security/cve/CVE-2015-3241"
},
{
"category": "external",
"summary": "SUSE Bug 935017 for CVE-2015-3241",
"url": "https://bugzilla.suse.com/935017"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:44:50Z",
"details": "moderate"
}
],
"title": "CVE-2015-3241"
},
{
"cve": "CVE-2015-3280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3280"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3280",
"url": "https://www.suse.com/security/cve/CVE-2015-3280"
},
{
"category": "external",
"summary": "SUSE Bug 1000443 for CVE-2015-3280",
"url": "https://bugzilla.suse.com/1000443"
},
{
"category": "external",
"summary": "SUSE Bug 944178 for CVE-2015-3280",
"url": "https://bugzilla.suse.com/944178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:44:50Z",
"details": "moderate"
}
],
"title": "CVE-2015-3280"
},
{
"cve": "CVE-2015-5240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5240"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in OpenStack Neutron before 2014.2.4 and 2015.1 before 2015.1.2, when using the ML2 plugin or the security groups AMQP API, allows remote authenticated users to bypass IP anti-spoofing controls by changing the device owner of a port to start with network: before the security group rules are applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5240",
"url": "https://www.suse.com/security/cve/CVE-2015-5240"
},
{
"category": "external",
"summary": "SUSE Bug 943648 for CVE-2015-5240",
"url": "https://bugzilla.suse.com/943648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:44:50Z",
"details": "low"
}
],
"title": "CVE-2015-5240"
},
{
"cve": "CVE-2015-7713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-7713"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by leveraging an instance that was running when the change was made.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-7713",
"url": "https://www.suse.com/security/cve/CVE-2015-7713"
},
{
"category": "external",
"summary": "SUSE Bug 949070 for CVE-2015-7713",
"url": "https://bugzilla.suse.com/949070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:openstack-nova-compute-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-neutron-2014.2.4~a0~dev103-10.3.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-nova-2014.2.4~a0~dev80-14.1.noarch",
"SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5:python-python-memcached-1.54-2.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:44:50Z",
"details": "moderate"
}
],
"title": "CVE-2015-7713"
}
]
}
suse-su-2015:2219-1
Vulnerability from csaf_suse
Published
2015-12-07 14:22
Modified
2015-12-07 14:22
Summary
Security update for openstack-nova
Notes
Title of the patch
Security update for openstack-nova
Description of the patch
This update for openstack-nova provides various fixes and improvements:
- Fix regression where launched instances in tenants not visible for other users. (bsc#927625)
- Remove error messages from multipath command output before parsing. (bsc#949529)
- Fix live-migration usage of the wrong connector information.
- Added requirement for memcached to python-nova. (bsc#942457)
- Don't expect meta attributes in object_compat that aren't in the db obj. (bsc#949070, CVE-2015-7713)
- Delete orphaned instance files from compute nodes (bsc#944178, CVE-2015-3280)
- Kill rsync/scp processes before deleting instance. (bsc#935017, CVE-2015-3241)
- Sync process utils from oslo for execute callbacks. (bsc#935017, CVE-2015-3241)
- Fix rebuild of an instance with a volume attached.
- Fixes _cleanup_rbd code to capture ImageBusy exception.
- Don't try to confine a non-NUMA instance.
- Include blank volumes in the block device mapping (bsc#945923)
Patchnames
sleclo50sp3-openstack-nova-12253
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openstack-nova",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update for openstack-nova provides various fixes and improvements:\n\n- Fix regression where launched instances in tenants not visible for other users. (bsc#927625)\n- Remove error messages from multipath command output before parsing. (bsc#949529)\n- Fix live-migration usage of the wrong connector information.\n- Added requirement for memcached to python-nova. (bsc#942457)\n- Don\u0027t expect meta attributes in object_compat that aren\u0027t in the db obj. (bsc#949070, CVE-2015-7713)\n- Delete orphaned instance files from compute nodes (bsc#944178, CVE-2015-3280)\n- Kill rsync/scp processes before deleting instance. (bsc#935017, CVE-2015-3241)\n- Sync process utils from oslo for execute callbacks. (bsc#935017, CVE-2015-3241)\n- Fix rebuild of an instance with a volume attached.\n- Fixes _cleanup_rbd code to capture ImageBusy exception.\n- Don\u0027t try to confine a non-NUMA instance.\n- Include blank volumes in the block device mapping (bsc#945923)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sleclo50sp3-openstack-nova-12253",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_2219-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:2219-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20152219-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:2219-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-December/001723.html"
},
{
"category": "self",
"summary": "SUSE Bug 927625",
"url": "https://bugzilla.suse.com/927625"
},
{
"category": "self",
"summary": "SUSE Bug 935017",
"url": "https://bugzilla.suse.com/935017"
},
{
"category": "self",
"summary": "SUSE Bug 942457",
"url": "https://bugzilla.suse.com/942457"
},
{
"category": "self",
"summary": "SUSE Bug 944178",
"url": "https://bugzilla.suse.com/944178"
},
{
"category": "self",
"summary": "SUSE Bug 945923",
"url": "https://bugzilla.suse.com/945923"
},
{
"category": "self",
"summary": "SUSE Bug 949070",
"url": "https://bugzilla.suse.com/949070"
},
{
"category": "self",
"summary": "SUSE Bug 949529",
"url": "https://bugzilla.suse.com/949529"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3241 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3280 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-7713 page",
"url": "https://www.suse.com/security/cve/CVE-2015-7713/"
}
],
"title": "Security update for openstack-nova",
"tracking": {
"current_release_date": "2015-12-07T14:22:56Z",
"generator": {
"date": "2015-12-07T14:22:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:2219-1",
"initial_release_date": "2015-12-07T14:22:56Z",
"revision_history": [
{
"date": "2015-12-07T14:22:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"product": {
"name": "openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"product_id": "openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "python-nova-2014.2.4~a0~dev80-20.1.x86_64",
"product": {
"name": "python-nova-2014.2.4~a0~dev80-20.1.x86_64",
"product_id": "python-nova-2014.2.4~a0~dev80-20.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 5",
"product": {
"name": "SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:cloud:5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch"
},
"product_reference": "openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-2014.2.4~a0~dev80-20.1.x86_64 as component of SUSE OpenStack Cloud 5",
"product_id": "SUSE OpenStack Cloud 5:python-nova-2014.2.4~a0~dev80-20.1.x86_64"
},
"product_reference": "python-nova-2014.2.4~a0~dev80-20.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-3241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3241"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allows remote authenticated users to cause a denial of service (disk, network, and other resource consumption) by resizing and then deleting an instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 5:openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"SUSE OpenStack Cloud 5:openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:python-nova-2014.2.4~a0~dev80-20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3241",
"url": "https://www.suse.com/security/cve/CVE-2015-3241"
},
{
"category": "external",
"summary": "SUSE Bug 935017 for CVE-2015-3241",
"url": "https://bugzilla.suse.com/935017"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 5:openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"SUSE OpenStack Cloud 5:openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:python-nova-2014.2.4~a0~dev80-20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-3241"
},
{
"cve": "CVE-2015-3280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3280"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 5:openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"SUSE OpenStack Cloud 5:openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:python-nova-2014.2.4~a0~dev80-20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3280",
"url": "https://www.suse.com/security/cve/CVE-2015-3280"
},
{
"category": "external",
"summary": "SUSE Bug 1000443 for CVE-2015-3280",
"url": "https://bugzilla.suse.com/1000443"
},
{
"category": "external",
"summary": "SUSE Bug 944178 for CVE-2015-3280",
"url": "https://bugzilla.suse.com/944178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 5:openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"SUSE OpenStack Cloud 5:openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:python-nova-2014.2.4~a0~dev80-20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-3280"
},
{
"cve": "CVE-2015-7713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-7713"
}
],
"notes": [
{
"category": "general",
"text": "OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by leveraging an instance that was running when the change was made.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 5:openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"SUSE OpenStack Cloud 5:openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:python-nova-2014.2.4~a0~dev80-20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-7713",
"url": "https://www.suse.com/security/cve/CVE-2015-7713"
},
{
"category": "external",
"summary": "SUSE Bug 949070 for CVE-2015-7713",
"url": "https://bugzilla.suse.com/949070"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 5:openstack-nova-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-api-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cells-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-cert-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-compute-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-conductor-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-console-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-consoleauth-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-doc-2014.2.4~a0~dev80-20.1.noarch",
"SUSE OpenStack Cloud 5:openstack-nova-novncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-objectstore-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-scheduler-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-serialproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:openstack-nova-vncproxy-2014.2.4~a0~dev80-20.1.x86_64",
"SUSE OpenStack Cloud 5:python-nova-2014.2.4~a0~dev80-20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-12-07T14:22:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-7713"
}
]
}
gsd-2015-3280
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-3280",
"description": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.",
"id": "GSD-2015-3280",
"references": [
"https://www.suse.com/security/cve/CVE-2015-3280.html",
"https://access.redhat.com/errata/RHSA-2015:1898",
"https://ubuntu.com/security/CVE-2015-3280"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-3280"
],
"details": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.",
"id": "GSD-2015-3280",
"modified": "2023-12-13T01:20:07.968567Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2015-3280",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://rhn.redhat.com/errata/RHSA-2015-1898.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2015-1898.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html",
"refsource": "MISC",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"name": "http://www.securityfocus.com/bid/76553",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/76553"
},
{
"name": "https://launchpad.net/bugs/1392527",
"refsource": "MISC",
"url": "https://launchpad.net/bugs/1392527"
},
{
"name": "https://security.openstack.org/ossa/OSSA-2015-017.html",
"refsource": "MISC",
"url": "https://security.openstack.org/ossa/OSSA-2015-017.html"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c2014.2.4||\u003e=2015.1.0,\u003c2015.1.2",
"affected_versions": "All versions before 2014.2.4, all versions starting from 2015.1.0 before 2015.1.2",
"cvss_v2": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
"cwe_ids": [
"CWE-1035",
"CWE-399",
"CWE-937"
],
"date": "2023-02-08",
"description": "A flaw was found in the way OpenStack Compute (nova) handled the resize state. If an authenticated user deleted an instance while it was in the resize state, it could cause the original instance to not be deleted from the compute node it was running on, allowing the user to cause a denial of service.",
"fixed_versions": [
"2014.2.4",
"2015.1.2"
],
"identifier": "CVE-2015-3280",
"identifiers": [
"GHSA-mfmj-gwg3-vhw7",
"CVE-2015-3280"
],
"not_impacted": "All versions starting from 2014.2.4 before 2015.1.0, all versions starting from 2015.1.2",
"package_slug": "pypi/nova",
"pubdate": "2022-05-14",
"solution": "Upgrade to versions 2014.2.4, 2015.1.2 or above.",
"title": "OpenStack Compute (nova) allows remote authenticated users to cause a denial of service",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2015-3280",
"https://launchpad.net/bugs/1392527",
"https://security.openstack.org/ossa/OSSA-2015-017.html",
"http://rhn.redhat.com/errata/RHSA-2015-1898.html",
"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html",
"https://access.redhat.com/errata/RHSA-2015:1898",
"https://access.redhat.com/security/cve/CVE-2015-3280",
"https://bugzilla.redhat.com/show_bug.cgi?id=1257942",
"https://web.archive.org/web/20200228023247/http://www.securityfocus.com/bid/76553",
"https://github.com/advisories/GHSA-mfmj-gwg3-vhw7"
],
"uuid": "22c9da94-6eb2-4da2-83d8-3a747a3c2689"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2015.1.2",
"versionStartIncluding": "2015.1.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2014.2.4",
"versionStartIncluding": "2014.2",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2015-3280"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-399"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.openstack.org/ossa/OSSA-2015-017.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://security.openstack.org/ossa/OSSA-2015-017.html"
},
{
"name": "RHSA-2015:1898",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-1898.html"
},
{
"name": "https://launchpad.net/bugs/1392527",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://launchpad.net/bugs/1392527"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"name": "76553",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/76553"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2023-02-13T00:49Z",
"publishedDate": "2015-10-26T17:59Z"
}
}
}
fkie_cve-2015-3280
Vulnerability from fkie_nvd
Published
2015-10-26 17:59
Modified
2025-04-12 10:46
Severity ?
Summary
OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | http://rhn.redhat.com/errata/RHSA-2015-1898.html | Third Party Advisory | |
| secalert@redhat.com | http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html | Third Party Advisory | |
| secalert@redhat.com | http://www.securityfocus.com/bid/76553 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://launchpad.net/bugs/1392527 | Third Party Advisory | |
| secalert@redhat.com | https://security.openstack.org/ossa/OSSA-2015-017.html | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://rhn.redhat.com/errata/RHSA-2015-1898.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/76553 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://launchpad.net/bugs/1392527 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.openstack.org/ossa/OSSA-2015-017.html | Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8E483493-8EAA-4772-85E6-8F05C8F0C9F4",
"versionEndExcluding": "2014.2.4",
"versionStartIncluding": "2014.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6F2937D9-1DB2-4C70-B5AA-E9E847090F6E",
"versionEndExcluding": "2015.1.2",
"versionStartIncluding": "2015.1.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state."
},
{
"lang": "es",
"value": "OpenStack Compute (nova) en versiones anteriores a 2014.2.4 (juno) y 2015.1.x en versiones anteriores a 2015.1.2 (kilo) no elimina adecuadamente casos desde los nodos de c\u00f3mputo, lo que permite a usuarios remotos autenticados provocar una denegaci\u00f3n de servicio (consumo del disco) borrando instancias cuando entra en el estado de cambio de tama\u00f1o."
}
],
"id": "CVE-2015-3280",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2015-10-26T17:59:03.747",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-1898.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/76553"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://launchpad.net/bugs/1392527"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "https://security.openstack.org/ossa/OSSA-2015-017.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-1898.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/76553"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://launchpad.net/bugs/1392527"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://security.openstack.org/ossa/OSSA-2015-017.html"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-399"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
ghsa-mfmj-gwg3-vhw7
Vulnerability from github
Published
2022-05-14 01:58
Modified
2023-02-08 18:00
VLAI Severity ?
Summary
OpenStack Compute (nova) allows remote authenticated users to cause a denial of service
Details
OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.
{
"affected": [
{
"package": {
"ecosystem": "PyPI",
"name": "nova"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2014.2.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "PyPI",
"name": "nova"
},
"ranges": [
{
"events": [
{
"introduced": "2015.1.0"
},
{
"fixed": "2015.1.2"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2015-3280"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": true,
"github_reviewed_at": "2023-02-08T18:00:14Z",
"nvd_published_at": "2015-10-26T17:59:00Z",
"severity": "MODERATE"
},
"details": "OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.",
"id": "GHSA-mfmj-gwg3-vhw7",
"modified": "2023-02-08T18:00:14Z",
"published": "2022-05-14T01:58:45Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-3280"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2015:1898"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2015-3280"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1257942"
},
{
"type": "WEB",
"url": "https://launchpad.net/bugs/1392527"
},
{
"type": "PACKAGE",
"url": "https://opendev.org/openstack/nova"
},
{
"type": "WEB",
"url": "https://security.openstack.org/ossa/OSSA-2015-017.html"
},
{
"type": "WEB",
"url": "https://web.archive.org/web/20200228023247/http://www.securityfocus.com/bid/76553"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2015-1898.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/76553"
}
],
"schema_version": "1.4.0",
"severity": [],
"summary": "OpenStack Compute (nova) allows remote authenticated users to cause a denial of service"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…