Key Vulnerability Information from the Screenshot Advisory ID: RHSA-2016:2991 Severity: Moderate Affected Products: Red Hat OpenStack 8 x86_64 CVE Reference: CVE-2015-5162 Security Fix: - Resource vulnerability in OpenStack Compute (nova), Block Storage (cinder), and Image (glance) services in their use of qemu-img. An unprivileged user could consume as much as 4 GB of RAM on the compute host by uploading a malicious image. Bug Fixes: - Issues related to various OpenStack components including compute, storage, and image services. - Specific bugs fixed include Unicode handling issues, snapshot creation failures, and more. Solution: - Includes upgrading openstack-nova, openstack-cinder, and openstack-glance packages. Issued and Updated Date: Both on 2016-12-21 Reference: Moderate severity level classification by Red Hat Product Security and related CVE details are available for further information.