CVE-2013-2030 | Ubuntu

keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing certificates, which allows local users to spoof servers by pre-creating this directory, which is reused by Nova, as demonstrated using /tmp/keystone-signing-nova on Fedora.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
nova	13.04 raring	Ignored
	12.10 quantal	Ignored
	12.04 LTS precise	Not affected
	11.10 oneiric	Not affected
	10.04 LTS lucid	Not in release
	8.04 LTS hardy	Not in release

Notes

jdstrand

Ubuntu 12.04 LTS and lower not affected /tmp/keystone-signing-nova is created but it is owned by the nova user and symlink restrictions are in effect. upstream fix is to change /etc/nova/api-paste.ini. Since this issue is mitigated by symlink restrictions, ignoring since a config file change is too intrusive

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
nova	Upstream: https://review.openstack.org/#/c/28569/ Upstream: https://review.openstack.org/#/c/28570/ Upstream: https://review.openstack.org/#/c/28568/

References

Other references

https://www.cve.org/CVERecord?id=CVE-2013-2030