Fedora 16 : openstack-nova-2011.3.1-0.4.10818.fc16 (2012-0682)

This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

Update to 2011.3.1 release candidate. See
https://launchpad.net/nova/+milestone/2011.3.1

This also includes a minor bug fix for libguestfs file injection

This update includes ~50 patches from the upstream stable branch and a
fix for an issue with attaching volumes.

Sync up with Fedora spec, to only add fuse group if present.
Explicitly depend on the fuse package to avoid #767852. Requires
manually installing 'fuse' first.

Also adds libguestfs update

Add --yes, --rootpw, and --novapw arguments to
openstack-nova-db-setup.

Please ensure you have at least python-migrate-0.6-6 installed when
testing this

Change the default database from sqlite to mysql.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=740456
https://bugzilla.redhat.com/show_bug.cgi?id=752709
https://bugzilla.redhat.com/show_bug.cgi?id=767251
https://launchpad.net/nova/+milestone/2011.3.1
http://www.nessus.org/u?bb757691

Solution :

Update the affected openstack-nova package.

Risk factor :

Medium / CVSS Base Score : 6.0
(CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P)
CVSS Temporal Score : 4.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Fedora Local Security Checks

Nessus Plugin ID: 57610 ()

Bugtraq ID: 51047

CVE ID: CVE-2011-4596

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now