Описание
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from outside of the allowed allocation pool. Versions of openstack-neutron before 13.0.0.0b2, 12.0.3 and 11.0.5 are vulnerable.
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from outside of the allowed allocation pool.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux OpenStack Platform 7 (Kilo) | openstack-neutron | Will not fix | ||
| Red Hat Fuse 7 | openstack-neutron | Not affected | ||
| Red Hat OpenStack Platform 14 (Rocky) | openstack-neutron | Not affected | ||
| Red Hat OpenStack Platform 8 (Liberty) | openstack-neutron | Will not fix | ||
| Red Hat OpenStack Platform 9 (Mitaka) | openstack-neutron | Will not fix | ||
| Red Hat OpenStack Platform 10.0 (Newton) | openstack-neutron | Fixed | RHSA-2018:2715 | 17.09.2018 |
| Red Hat OpenStack Platform 12.0 (Pike) | openstack-neutron | Fixed | RHSA-2018:3792 | 05.12.2018 |
| Red Hat OpenStack Platform 13.0 (Queens) | openstack-neutron | Fixed | RHSA-2018:2710 | 17.09.2018 |
Показывать по
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from outside of the allowed allocation pool. Versions of openstack-neutron before 13.0.0.0b2, 12.0.3 and 11.0.5 are vulnerable.
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from outside of the allowed allocation pool. Versions of openstack-neutron before 13.0.0.0b2, 12.0.3 and 11.0.5 are vulnerable.
When using the Linux bridge ml2 driver, non-privileged tenants are abl ...
OpensStack Neutron Denial of Service Vulnerability
EPSS
6.5 Medium
CVSS3