Search for packages
| purl | pkg:deb/debian/nova@2012.1.1-2?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-4475-ffcq-cff8 | Directory traversal vulnerability in virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when used over libvirt-based hypervisors, allows remote authenticated users to write arbitrary files to the disk image via a .. (dot dot) in the path attribute of a file element. |
CVE-2012-3360
GHSA-m454-cm7h-rqhh PYSEC-2012-38 |
| VCID-c7ya-v12e-8bfq | virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image. |
CVE-2012-3361
GHSA-cm54-3vvf-f5p8 PYSEC-2012-39 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T09:41:46.499920+00:00 | Debian Importer | Fixing | VCID-4475-ffcq-cff8 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T08:54:03.703962+00:00 | Debian Importer | Fixing | VCID-c7ya-v12e-8bfq | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-11T18:26:57.819149+00:00 | Debian Importer | Fixing | VCID-4475-ffcq-cff8 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-11T17:58:23.149074+00:00 | Debian Importer | Fixing | VCID-c7ya-v12e-8bfq | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:47:27.406686+00:00 | Debian Importer | Fixing | VCID-c7ya-v12e-8bfq | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:47:27.349380+00:00 | Debian Importer | Fixing | VCID-4475-ffcq-cff8 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |