Moderate severityNVD Advisory· Published Oct 26, 2015· Updated Jun 17, 2026
CVE-2015-3280
CVE-2015-3280
Description
OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
novaPyPI | < 2014.2.4 | 2014.2.4 |
novaPyPI | >= 2015.1.0, < 2015.1.2 | 2015.1.2 |
Affected products
8- osv-coords7 versionspkg:apk/chainguard/openstack-nova-2026.1pkg:pypi/novapkg:rpm/suse/openstack-neutron&distro=SUSE%20Cloud%20Compute%20Node%20for%20SUSE%20Linux%20Enterprise%2012%205pkg:rpm/suse/openstack-nova&distro=SUSE%20Cloud%20Compute%20Node%20for%20SUSE%20Linux%20Enterprise%2012%205pkg:rpm/suse/openstack-nova&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/openstack-nova-doc&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/python-python-memcached&distro=SUSE%20Cloud%20Compute%20Node%20for%20SUSE%20Linux%20Enterprise%2012%205
< 0+ 6 more
- (no CPE)range: < 0
- (no CPE)range: < 2014.2.4
- (no CPE)range: < 2014.2.4~a0~dev103-10.3
- (no CPE)range: < 2014.2.4~a0~dev80-14.1
- (no CPE)range: < 2014.2.4~a0~dev80-20.1
- (no CPE)range: < 2014.2.4~a0~dev80-20.1
- (no CPE)range: < 1.54-2.1
Patches
Vulnerability mechanics
References
12- rhn.redhat.com/errata/RHSA-2015-1898.htmlnvdThird Party AdvisoryWEB
- www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.htmlnvdThird Party AdvisoryWEB
- www.securityfocus.com/bid/76553nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-mfmj-gwg3-vhw7ghsaADVISORY
- launchpad.net/bugs/1392527nvdThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2015-3280ghsaADVISORY
- security.openstack.org/ossa/OSSA-2015-017.htmlnvdVendor AdvisoryWEB
- access.redhat.com/errata/RHSA-2015:1898ghsaWEB
- access.redhat.com/security/cve/CVE-2015-3280ghsaWEB
- bugzilla.redhat.com/show_bug.cgighsaWEB
- opendev.org/openstack/novaghsaPACKAGE
- web.archive.org/web/20200228023247/http://www.securityfocus.com/bid/76553ghsaWEB
News mentions
0No linked articles in our index yet.