Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

Ubuntu 11.10 USN-1247-1 Critical: Nova Information Leak Threat

Calendar Oct 25, 2011 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory information leak update critical threat ubuntu nova
Nova could be made to expose sensitive information. 
=========================================================================Ubuntu Security Notice USN-1247-1
October 25, 2011

nova vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 11.10

Summary:

Nova could be made to expose sensitive information.

Software Description:
- nova: OpenStack Compute cloud infrastructure

Details:

An information leak was discovered in Nova. An attacker with access to a
valid EC2_ACCESS_KEY could obtain the corresponding EC2_SECRET_KEY for that
user.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.10:
  python-nova                     2011.3-0ubuntu6.2

In general, a standard system update will make all the necessary changes.

References:
  
  https://bugs.launchpad.net/nova/+bug/868360

Package Information:
  https://launchpad.net/ubuntu/+source/nova/2011.3-0ubuntu6.2

Ubuntu 11.10 USN-1247-1 Critical: Nova Information Leak Threat

ubuntu
Calendar Grey October 25, 2011
Dist Ubuntu Esm H88
The Ubuntu Security Notice USN-1247-1 addresses a nova flaw that poses a risk of disclosing confidential data.
Nova could be made to expose sensitive information.

Summary

Topics%20covered

Topics Covered

security advisory information leak update critical threat ubuntu nova

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: python-nova 2011.3-0ubuntu6.2 In general, a standard system update will make all the necessary changes.

References

https://bugs.launchpad.net/nova/+bug/868360

Severity
critical
Lowest
Low
Medium
High
Critical

October 25, 2011

Topics%20covered

Topics Covered

security advisory information leak update critical threat ubuntu nova

Package Information

https://launchpad.net/ubuntu/+source/nova/2011.3-0ubuntu6.2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here