Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/nova@2:17.0.0-1?distro=trixie
purl pkg:deb/debian/nova@2:17.0.0-1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-cy7p-gzf8-eqcj OpenStack Nova Denial of service attack on the compute host An issue was discovered in OpenStack Nova 15.x through 15.1.0 and 16.x through 16.1.1. By detaching and reattaching an encrypted volume, an attacker may access the underlying raw volume and corrupt the LUKS header, resulting in a denial of service attack on the compute host. (The same code error also results in data loss, but that is not a vulnerability because the user loses their own data.) All Nova setups supporting encrypted volumes are affected. CVE-2017-18191
GHSA-ffmh-r67w-m88f

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T10:07:43.070789+00:00 Debian Importer Fixing VCID-cy7p-gzf8-eqcj https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-12T18:14:47.119104+00:00 Debian Importer Fixing VCID-cy7p-gzf8-eqcj https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:47:29.891714+00:00 Debian Importer Fixing VCID-cy7p-gzf8-eqcj https://security-tracker.debian.org/tracker/data/json 38.1.0