oss-sec mailing list archives
Re: CVE request for vulnerability in OpenStack Neutron
From: cve-assign () mitre org
Date: Tue, 17 Jun 2014 18:24:04 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Neutron L3-agent DoS through IPv6 subnet
By creating an IPv6 private subnet attached to a L3 router, an authenticated user may break the L3-agent, preventing further floating IPv4 addresses from being attached for the entire cloud.
IPv6 prefix shouldn't be added in the NAT table
SNAT rules with IPv6 prefixes are added into the NAT table, which causes failure
Use CVE-2014-4167. - -- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (SunOS) iQEcBAEBAgAGBQJToL9xAAoJEKllVAevmvmstr8H/3Ef+n04wmBmJ3y1zYu3BVPV sToabL9LosdESbIrW8AQi22gAjvJZtMeN99oGbXuaJ+pQTqU5AjT3cV1s1g0ut6r wmE2Rxfo96+l1sCNQiqTb0VZfTpr28W4/MT2JDxx8qQ2k/JxuWYz7OLYOjHIwa1/ RJhD8L00YWSsGTgYOTQUfBlyQq0O/q/sQBFp4xvrQmMX4fx7T//Qg/t+D//yEwjs GheVqnDLAFOLacq3JaAK9bssPKK6NMrhOnarfw4YNMnBNOFgVNvzdEPGKaHpK4y/ pQGnvPkOmADGC2pYWpHHYZp6/+E13wH7SQ+QkidMa67FyRt9hTzEoiWJ5iT559k= =0lA1 -----END PGP SIGNATURE-----
Current thread:
- CVE request for vulnerability in OpenStack Neutron Tristan Cacqueray (Jun 16)
- Re: CVE request for vulnerability in OpenStack Neutron cve-assign (Jun 17)