This security bulletin contains one low risk vulnerability.
Exploit availability: NoDescription
The vulnerability allows a local attacker to cause DoS condition on the target system.
The weakness exists due to insufficient handling of encrypted volumes. A local attacker can swap encrypted volumes, corrupt the LUKS headers and cause the service to crash.
Install update from vendor's website.Vulnerable software versions
Openstack Nova: 15.0.0 - 16.0.4
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?