CVE-2013-2096

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2013-2096

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2013-2096.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2013-2096

Aliases

GHSA-m674-hmx2-ffhq

Downstream

DEBIAN-CVE-2013-2096

Withdrawn

2026-01-27T04:12:08.519378Z

Published

2013-07-09T17:55:01Z

Modified

2026-01-27T04:12:08.519378Z

Summary

[none]

Details

OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by creating an image with a large virtual size that does not contain a large amount of data.

References

http://lists.openstack.org/pipermail/openstack-announce/2013-May/000102.html
http://www.ubuntu.com/usn/USN-1831-1
http://www.securityfocus.com/bid/59924
https://review.openstack.org/#/c/28717/
https://review.openstack.org/#/c/28901/
https://review.openstack.org/#/c/29192/

CVE-2013-2096

Affected packages