Moderate severityNVD Advisory· Published Dec 26, 2012· Updated Jun 16, 2026
CVE-2012-5625
CVE-2012-5625
Description
OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume (PV) content when reallocating for instances, which allows attackers to obtain sensitive information by reading the memory of the previous logical volume (LV).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
novaPyPI | < 12.0.0a0 | 12.0.0a0 |
Affected products
4Patches
Vulnerability mechanics
References
14- www.ubuntu.com/usn/USN-1663-1nvdPatchWEB
- github.com/openstack/nova/commit/9d2ea970422591f8cdc394001be9a2deca499a5fnvdPatchWEB
- github.com/openstack/nova/commit/a99a802e008eed18e39fc1d98170edc495cbd354nvdPatchWEB
- github.com/advisories/GHSA-rwhr-h69g-8qmqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2012-5625ghsaADVISORY
- rhn.redhat.com/errata/RHSA-2013-0208.htmlnvdWEB
- www.openwall.com/lists/oss-security/2012/12/11/5nvdWEB
- bugs.launchpad.net/nova/+bug/1070539nvdWEB
- bugzilla.redhat.com/show_bug.cginvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/nova/PYSEC-2012-41.yamlghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/nova/PYSEC-2012-42.yamlghsaWEB
- launchpad.net/nova/folsom/2012.2.2nvdWEB
- osvdb.org/88419nvd
- www.securityfocus.com/bid/56904nvd
News mentions
0No linked articles in our index yet.