Comment 11 for bug 1548450
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote Re: Host data leak during resize/migrate for raw-backed instances | #11 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
No worries, I also assumed the worst case in that early draft. This second version also narrow affected deployment to the one using raw storage.
Impact description draft #2:
Title: Nova host data leak through resize/migration
Reporter: Matthew Booth (Red Hat)
Products: Nova
Affects: <=2015.1.2, >=12.0.0 <=12.0.1
Description:
Matthew Booth from Red Hat reported a vulnerability in Nova instance resize/migration. By overwriting an ephemeral or root disk with a malicious image before requesting a resize, an authenticated user may be able to read arbitrary files from the compute host. Only setups using libvirt driver with raw storage and setting "use_cow_images = False" (not default) are affected.