Suggestions search

All statuses

Filter by:

With package: nova-filters

Found 2 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2026-24708

8.2 HIGH

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 2 months ago Activity log

Created suggestion 2 months ago

An issue was discovered in OpenStack Nova before 30.2.2, 31 …

An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1. By writing a malicious QCOW header to a root or ephemeral disk and then triggering a resize, a user may convince Nova's Flat image backend to call qemu-img without a format restriction, resulting in an unsafe image resize operation that could destroy data on the host system. Only compute nodes using the Flat image backend (usually configured with use_cow_images=False) are affected.

References

Affected products

Nova

<31.2.1
<30.2.2
<32.1.1

Matching in nixpkgs

pkgs.nova

Find outdated or deprecated Helm charts running in your cluster

nixos-unstable 3.11.10
- nixpkgs-unstable 3.11.10
- nixos-unstable-small 3.11.10
nixos-25.11 3.11.9
- nixos-25.11-small 3.11.9
- nixpkgs-25.11-darwin 3.11.9

pkgs.libnova

Celestial Mechanics, Astrometry and Astrodynamics Library

nixos-unstable 0.16
- nixpkgs-unstable 0.16
- nixos-unstable-small 0.16
nixos-25.11 0.16
- nixos-25.11-small 0.16
- nixpkgs-25.11-darwin 0.16

pkgs.renovate

Cross-platform Dependency Automation by Mend.io

nixos-unstable 43.4.0
- nixpkgs-unstable 43.4.0
- nixos-unstable-small 43.4.0
nixos-25.11 41.169.3
- nixos-25.11-small 41.169.3
- nixpkgs-25.11-darwin 41.169.3

pkgs.supernovas

High-performance astrometry library for C/C++

nixos-unstable 1.5.1
- nixpkgs-unstable 1.5.1
- nixos-unstable-small 1.5.1

pkgs.sweet-nova

Dark and colorful, blurry theme for the KDE Plasma desktop

nixos-unstable 2023-09-30
- nixpkgs-unstable 2023-09-30
- nixos-unstable-small 2023-09-30
nixos-25.11 2023-09-30
- nixos-25.11-small 2023-09-30
- nixpkgs-25.11-darwin 2023-09-30

pkgs.nova-filters

LADSPA plugins based on filters of nova

nixos-unstable 0.2-2
- nixpkgs-unstable 0.2-2
- nixos-unstable-small 0.2-2
nixos-25.11 0.2-2
- nixos-25.11-small 0.2-2
- nixpkgs-25.11-darwin 0.2-2

pkgs.nova-password

Decrypt the admin password generated for the VM in OpenStack

nixos-unstable 0.5.10
- nixpkgs-unstable 0.5.10
- nixos-unstable-small 0.5.10
nixos-25.11 0.5.10
- nixos-25.11-small 0.5.10
- nixpkgs-25.11-darwin 0.5.10

pkgs.webos.novacom

Utility for communicating with WebOS devices

nixos-unstable 18
- nixpkgs-unstable 18
- nixos-unstable-small 18
nixos-25.11 18
- nixos-25.11-small 18
- nixpkgs-25.11-darwin 18

pkgs.webos.novacomd

Daemon for communicating with WebOS devices

nixos-unstable 127
- nixpkgs-unstable 127
- nixos-unstable-small 127
nixos-25.11 127
- nixos-25.11-small 127
- nixpkgs-25.11-darwin 127

pkgs.tmuxPlugins.tmux-nova

tmux-nova theme

nixos-unstable 1.2.0
- nixpkgs-unstable 1.2.0
- nixos-unstable-small 1.2.0
nixos-25.11 1.2.0
- nixos-25.11-small 1.2.0
- nixpkgs-25.11-darwin 1.2.0

pkgs.mysql-shell-innovation

New command line scriptable shell for MySQL

nixos-unstable 9.6.0
- nixpkgs-unstable 9.6.0
- nixos-unstable-small 9.6.0
nixos-25.11 9.4.0
- nixos-25.11-small 9.4.0
- nixpkgs-25.11-darwin 9.4.0

pkgs.typstPackages.nikonova

For Math exercises, with a unique dark theme

nixos-unstable 0.1.1
- nixpkgs-unstable 0.1.1
- nixos-unstable-small 0.1.1
nixos-25.11 0.1.1
- nixos-25.11-small 0.1.1
- nixpkgs-25.11-darwin 0.1.1

pkgs.indi-3rdparty.indi-inovaplx

Third party drivers for the INDI astronomical software suite

nixos-unstable 3rdparty-indi-inovaplx-2.1.6.2
- nixpkgs-unstable 3rdparty-indi-inovaplx-2.1.6.2
- nixos-unstable-small 3rdparty-indi-inovaplx-2.1.6.2
nixos-25.11 3rdparty-indi-inovaplx-2.1.6.2
- nixos-25.11-small 3rdparty-indi-inovaplx-2.1.6.2
- nixpkgs-25.11-darwin 3rdparty-indi-inovaplx-2.1.6.2

pkgs.python312Packages.anova-wifi

Python package for reading anova sous vide api data

nixos-25.11 0.17.1
- nixos-25.11-small 0.17.1
- nixpkgs-25.11-darwin 0.17.1

pkgs.python313Packages.anova-wifi

Python package for reading anova sous vide api data

nixos-unstable 0.17.1
- nixpkgs-unstable 0.17.1
- nixos-unstable-small 0.17.1
nixos-25.11 0.17.1
- nixos-25.11-small 0.17.1
- nixpkgs-25.11-darwin 0.17.1

pkgs.python314Packages.anova-wifi

Python package for reading anova sous vide api data

nixos-unstable 0.17.1
- nixpkgs-unstable 0.17.1
- nixos-unstable-small 0.17.1

pkgs.typstPackages.nikonova_0_1_0

For Math exercises, with a unique dark theme

nixos-unstable 0.1.0
- nixpkgs-unstable 0.1.0
- nixos-unstable-small 0.1.0
nixos-25.11 0.1.0
- nixos-25.11-small 0.1.0
- nixpkgs-25.11-darwin 0.1.0

pkgs.typstPackages.nikonova_0_1_1

For Math exercises, with a unique dark theme

nixos-unstable 0.1.1
- nixpkgs-unstable 0.1.1
- nixos-unstable-small 0.1.1
nixos-25.11 0.1.1
- nixos-25.11-small 0.1.1
- nixpkgs-25.11-darwin 0.1.1

pkgs.python312Packages.python-novaclient

Client library for OpenStack Compute API

nixos-25.11 18.11.0
- nixos-25.11-small 18.11.0
- nixpkgs-25.11-darwin 18.11.0

pkgs.python313Packages.python-novaclient

Client library for OpenStack Compute API

nixos-unstable 18.11.0
- nixpkgs-unstable 18.11.0
- nixos-unstable-small 18.11.0
nixos-25.11 18.11.0
- nixos-25.11-small 18.11.0
- nixpkgs-25.11-darwin 18.11.0

pkgs.python314Packages.python-novaclient

Client library for OpenStack Compute API

nixos-unstable 18.11.0
- nixpkgs-unstable 18.11.0
- nixos-unstable-small 18.11.0

pkgs.home-assistant-component-tests.anova

Open source home automation that puts local control and privacy first

nixos-25.11 2025.11.3
- nixos-25.11-small 2025.11.3
- nixpkgs-25.11-darwin 2025.11.3

pkgs.tests.home-assistant-component-tests.anova

Open source home automation that puts local control and privacy first

nixos-unstable 2026.2.1
- nixpkgs-unstable 2026.2.2
- nixos-unstable-small 2026.2.2

Package maintainers

@mweinelt Martin Weinelt <hexa@darmstadt.ccc.de>
@dotlambda ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86 <nix@dotlambda.de>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@returntoreality Linus Karl <linus@lotz.li>
@hjones2199 Hunter Jones <hjones2199@gmail.com>
@sheepforce Phillip Seeber <phillip.seeber@googlemail.com>
@aaronjheng Aaron Jheng <wentworth@outlook.com>
@qjoly Quentin JOLY <github@une-pause-cafe.fr>
@magnetophon Bart Brouns <bart@magnetophon.nl>
@vinetos vinetos <contact+git@vinetos.fr>
@JamieMagee Jamie Magee <jamie.magee@gmail.com>
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@anthonyroussel Anthony Roussel <anthony@roussel.dev>
@natsukium Tomoya Otabi <nixpkgs@natsukium.com>
@nycodeghg Marie Ramlow <tabmeier12+nix@gmail.com>
@dr460nf1r3 Nico Jensch <root@dr460nf1r3.org>
@o0th Sabato Luca Guadagno <o0th@pm.me>
@kiranshila Kiran Shila <me@kiranshila.com>
@cherrypiejam Gongqi Huang
@RossSmyth Ross Smyth

Untriaged

Permalink CVE-2011-4076

created 2 months ago Activity log

Created suggestion 2 months ago

OpenStack Nova before 2012.1 allows someone with access to an …

OpenStack Nova before 2012.1 allows someone with access to an EC2_ACCESS_KEY (equivalent to a username) to obtain the EC2_SECRET_KEY (equivalent to a password). Exposing the EC2_ACCESS_KEY via http or tools that allow man-in-the-middle over https could allow an attacker to easily obtain the EC2_SECRET_KEY. An attacker could also presumably brute force values for EC2_ACCESS_KEY.

References

https://security-tracker.debian.org/tracker/CVE-2011-4076 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-4076 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2011-4076 x_transferredx_refsource_MISC
https://bugs.launchpad.net/nova/+bug/868360 x_transferredx_refsource_MISC
https://www.openwall.com/lists/oss-security/2011/10/25/4 x_transferredx_refsource_MISC

Affected products

nova

==2014.1.3-11

Matching in nixpkgs

pkgs.nova

Find outdated or deprecated Helm charts running in your cluster

nixos-unstable 3.11.10
- nixpkgs-unstable 3.11.10
- nixos-unstable-small 3.11.10
nixos-25.11 3.11.9
- nixos-25.11-small 3.11.9
- nixpkgs-25.11-darwin 3.11.9

pkgs.libnova

Celestial Mechanics, Astrometry and Astrodynamics Library

nixos-unstable 0.16
- nixpkgs-unstable 0.16
- nixos-unstable-small 0.16
nixos-25.11 0.16
- nixos-25.11-small 0.16
- nixpkgs-25.11-darwin 0.16

pkgs.renovate

Cross-platform Dependency Automation by Mend.io

nixos-unstable 43.4.0
- nixpkgs-unstable 43.4.0
- nixos-unstable-small 43.4.0
nixos-25.11 41.169.3
- nixos-25.11-small 41.169.3
- nixpkgs-25.11-darwin 41.169.3

pkgs.supernovas

High-performance astrometry library for C/C++

nixos-unstable 1.5.1
- nixpkgs-unstable 1.5.1
- nixos-unstable-small 1.5.1

pkgs.sweet-nova

Dark and colorful, blurry theme for the KDE Plasma desktop

nixos-unstable 2023-09-30
- nixpkgs-unstable 2023-09-30
- nixos-unstable-small 2023-09-30
nixos-25.11 2023-09-30
- nixos-25.11-small 2023-09-30
- nixpkgs-25.11-darwin 2023-09-30

pkgs.nova-filters

LADSPA plugins based on filters of nova

nixos-unstable 0.2-2
- nixpkgs-unstable 0.2-2
- nixos-unstable-small 0.2-2
nixos-25.11 0.2-2
- nixos-25.11-small 0.2-2
- nixpkgs-25.11-darwin 0.2-2

pkgs.nova-password

Decrypt the admin password generated for the VM in OpenStack

nixos-unstable 0.5.10
- nixpkgs-unstable 0.5.10
- nixos-unstable-small 0.5.10
nixos-25.11 0.5.10
- nixos-25.11-small 0.5.10
- nixpkgs-25.11-darwin 0.5.10

pkgs.webos.novacom

Utility for communicating with WebOS devices

nixos-unstable 18
- nixpkgs-unstable 18
- nixos-unstable-small 18
nixos-25.11 18
- nixos-25.11-small 18
- nixpkgs-25.11-darwin 18

pkgs.webos.novacomd

Daemon for communicating with WebOS devices

nixos-unstable 127
- nixpkgs-unstable 127
- nixos-unstable-small 127
nixos-25.11 127
- nixos-25.11-small 127
- nixpkgs-25.11-darwin 127

pkgs.tmuxPlugins.tmux-nova

tmux-nova theme

nixos-unstable 1.2.0
- nixpkgs-unstable 1.2.0
- nixos-unstable-small 1.2.0
nixos-25.11 1.2.0
- nixos-25.11-small 1.2.0
- nixpkgs-25.11-darwin 1.2.0

pkgs.mysql-shell-innovation

New command line scriptable shell for MySQL

nixos-unstable 9.6.0
- nixpkgs-unstable 9.6.0
- nixos-unstable-small 9.6.0
nixos-25.11 9.4.0
- nixos-25.11-small 9.4.0
- nixpkgs-25.11-darwin 9.4.0

pkgs.typstPackages.nikonova

For Math exercises, with a unique dark theme

nixos-unstable 0.1.1
- nixpkgs-unstable 0.1.1
- nixos-unstable-small 0.1.1
nixos-25.11 0.1.1
- nixos-25.11-small 0.1.1
- nixpkgs-25.11-darwin 0.1.1

pkgs.indi-3rdparty.indi-inovaplx

Third party drivers for the INDI astronomical software suite

nixos-unstable 3rdparty-indi-inovaplx-2.1.6.2
- nixpkgs-unstable 3rdparty-indi-inovaplx-2.1.6.2
- nixos-unstable-small 3rdparty-indi-inovaplx-2.1.6.2
nixos-25.11 3rdparty-indi-inovaplx-2.1.6.2
- nixos-25.11-small 3rdparty-indi-inovaplx-2.1.6.2
- nixpkgs-25.11-darwin 3rdparty-indi-inovaplx-2.1.6.2

pkgs.python312Packages.anova-wifi

Python package for reading anova sous vide api data

nixos-25.11 0.17.1
- nixos-25.11-small 0.17.1
- nixpkgs-25.11-darwin 0.17.1

pkgs.python313Packages.anova-wifi

Python package for reading anova sous vide api data

nixos-unstable 0.17.1
- nixpkgs-unstable 0.17.1
- nixos-unstable-small 0.17.1
nixos-25.11 0.17.1
- nixos-25.11-small 0.17.1
- nixpkgs-25.11-darwin 0.17.1

pkgs.python314Packages.anova-wifi

Python package for reading anova sous vide api data

nixos-unstable 0.17.1
- nixpkgs-unstable 0.17.1
- nixos-unstable-small 0.17.1

pkgs.typstPackages.nikonova_0_1_0

For Math exercises, with a unique dark theme

nixos-unstable 0.1.0
- nixpkgs-unstable 0.1.0
- nixos-unstable-small 0.1.0
nixos-25.11 0.1.0
- nixos-25.11-small 0.1.0
- nixpkgs-25.11-darwin 0.1.0

pkgs.typstPackages.nikonova_0_1_1

For Math exercises, with a unique dark theme

nixos-unstable 0.1.1
- nixpkgs-unstable 0.1.1
- nixos-unstable-small 0.1.1
nixos-25.11 0.1.1
- nixos-25.11-small 0.1.1
- nixpkgs-25.11-darwin 0.1.1

pkgs.python312Packages.python-novaclient

Client library for OpenStack Compute API

nixos-25.11 18.11.0
- nixos-25.11-small 18.11.0
- nixpkgs-25.11-darwin 18.11.0

pkgs.python313Packages.python-novaclient

Client library for OpenStack Compute API

nixos-unstable 18.11.0
- nixpkgs-unstable 18.11.0
- nixos-unstable-small 18.11.0
nixos-25.11 18.11.0
- nixos-25.11-small 18.11.0
- nixpkgs-25.11-darwin 18.11.0

pkgs.python314Packages.python-novaclient

Client library for OpenStack Compute API

nixos-unstable 18.11.0
- nixpkgs-unstable 18.11.0
- nixos-unstable-small 18.11.0

pkgs.home-assistant-component-tests.anova

Open source home automation that puts local control and privacy first

nixos-25.11 2025.11.3
- nixos-25.11-small 2025.11.3
- nixpkgs-25.11-darwin 2025.11.3

pkgs.tests.home-assistant-component-tests.anova

Open source home automation that puts local control and privacy first

nixos-unstable 2026.2.1
- nixpkgs-unstable 2026.2.2
- nixos-unstable-small 2026.2.2

Package maintainers

@mweinelt Martin Weinelt <hexa@darmstadt.ccc.de>
@dotlambda ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86 <nix@dotlambda.de>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@returntoreality Linus Karl <linus@lotz.li>
@hjones2199 Hunter Jones <hjones2199@gmail.com>
@sheepforce Phillip Seeber <phillip.seeber@googlemail.com>
@aaronjheng Aaron Jheng <wentworth@outlook.com>
@qjoly Quentin JOLY <github@une-pause-cafe.fr>
@magnetophon Bart Brouns <bart@magnetophon.nl>
@vinetos vinetos <contact+git@vinetos.fr>
@JamieMagee Jamie Magee <jamie.magee@gmail.com>
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@anthonyroussel Anthony Roussel <anthony@roussel.dev>
@natsukium Tomoya Otabi <nixpkgs@natsukium.com>
@nycodeghg Marie Ramlow <tabmeier12+nix@gmail.com>
@dr460nf1r3 Nico Jensch <root@dr460nf1r3.org>
@o0th Sabato Luca Guadagno <o0th@pm.me>
@kiranshila Kiran Shila <me@kiranshila.com>
@cherrypiejam Gongqi Huang
@RossSmyth Ross Smyth