VulnerableCode Package Details - pkg:rpm/redhat/openstack-nova@2013.1.3-3?arch=el6ost

Search for packages

Vulnerability	Summary	Fixed by
VCID-5w9q-vw2n-zfdu Aliases: CVE-2013-4185 GHSA-ph2h-hh49-vh27	OpenStack Nova Denial of Service in network source security groups Algorithmic complexity vulnerability in OpenStack Compute (Nova) before 2013.1.3 and Havana before havana-3 does not properly handle network source security group policy updates, which allows remote authenticated users to cause a denial of service (nova-network consumption) via a large number of server-creation operations, which triggers a large number of update requests.	There are no reported fixed by versions.
VCID-qb9p-rpza-5fa5 Aliases: CVE-2013-2256 GHSA-5mj6-643f-2g85	OpenStack Compute (Nova) allows remote authenticated users to obtain sensitive information CVE-2013-2256 OpenStack: Nova private flavors resource limit circumvention	There are no reported fixed by versions.
VCID-qe1w-wnfu-mudr Aliases: CVE-2013-4261	OpenStack: openstack-nova-compute console-log DoS	There are no reported fixed by versions.
VCID-sj2k-uq1g-suby Aliases: CVE-2013-4179 GHSA-j6xh-q826-55jw	Improper Restriction of Operations within the Bounds of a Memory Buffer CVE-2013-4179 OpenStack: Nova XML entities DoS	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-5w9q-vw2n-zfdu
Aliases:
CVE-2013-4185
GHSA-ph2h-hh49-vh27

OpenStack Nova Denial of Service in network source security groups Algorithmic complexity vulnerability in OpenStack Compute (Nova) before 2013.1.3 and Havana before havana-3 does not properly handle network source security group policy updates, which allows remote authenticated users to cause a denial of service (nova-network consumption) via a large number of server-creation operations, which triggers a large number of update requests.

There are no reported fixed by versions.

VCID-qb9p-rpza-5fa5
Aliases:
CVE-2013-2256
GHSA-5mj6-643f-2g85

OpenStack Compute (Nova) allows remote authenticated users to obtain sensitive information CVE-2013-2256 OpenStack: Nova private flavors resource limit circumvention

There are no reported fixed by versions.

VCID-qe1w-wnfu-mudr
Aliases:
CVE-2013-4261

OpenStack: openstack-nova-compute console-log DoS

There are no reported fixed by versions.

VCID-sj2k-uq1g-suby
Aliases:
CVE-2013-4179
GHSA-j6xh-q826-55jw

Improper Restriction of Operations within the Bounds of a Memory Buffer CVE-2013-4179 OpenStack: Nova XML entities DoS

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:50:20.816534+00:00	RedHat Importer	Affected by	VCID-qb9p-rpza-5fa5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2256.json	38.0.0
2026-04-01T14:50:20.796095+00:00	RedHat Importer	Affected by	VCID-5w9q-vw2n-zfdu	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4185.json	38.0.0
2026-04-01T14:50:20.075177+00:00	RedHat Importer	Affected by	VCID-sj2k-uq1g-suby	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4179.json	38.0.0
2026-04-01T14:50:16.610497+00:00	RedHat Importer	Affected by	VCID-qe1w-wnfu-mudr	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4261.json	38.0.0