disallow boot from volume from specifying arbitrary volumes
Fix a vulnerability in volume attachment in nova-volume, affecting the
boot-from-volume feature. By passing a specific volume ID, an
authenticated user may be able to boot from a volume they don't own,
potentially resulting in full access to that 3rd-party volume.
Reviewed: https:/ /review. openstack. org/20700 github. com/openstack/ nova/commit/ 243d516cea9d3ca a5a8267b12d2f57 7dcb24193b
Committed: http://
Submitter: Jenkins
Branch: stable/essex
commit 243d516cea9d3ca a5a8267b12d2f57 7dcb24193b
Author: Vishvananda Ishaya <email address hidden>
Date: Thu Jan 24 10:45:19 2013 +0000
disallow boot from volume from specifying arbitrary volumes
Fix a vulnerability in volume attachment in nova-volume, affecting the from-volume feature. By passing a specific volume ID, an
boot-
authenticated user may be able to boot from a volume they don't own,
potentially resulting in full access to that 3rd-party volume.
Fixes bug: 1069904, CVE-2013-0208 3ce1ce64bf0a841 8bd2b5a6411
Change-Id: I5f7c8d20d3ebf3