oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE request for vulnerability in OpenStack Neutron

From: cve-assign () mitre org
Date: Tue, 17 Jun 2014 18:24:04 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Neutron L3-agent DoS through IPv6 subnet



By creating an IPv6 private subnet attached to a L3 router, an
authenticated user may break the L3-agent, preventing further floating
IPv4 addresses from being attached for the entire cloud.



IPv6 prefix shouldn't be added in the NAT table



SNAT rules with IPv6 prefixes are added into the NAT table, which
causes failure


Use CVE-2014-4167.

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (SunOS)

iQEcBAEBAgAGBQJToL9xAAoJEKllVAevmvmstr8H/3Ef+n04wmBmJ3y1zYu3BVPV
sToabL9LosdESbIrW8AQi22gAjvJZtMeN99oGbXuaJ+pQTqU5AjT3cV1s1g0ut6r
wmE2Rxfo96+l1sCNQiqTb0VZfTpr28W4/MT2JDxx8qQ2k/JxuWYz7OLYOjHIwa1/
RJhD8L00YWSsGTgYOTQUfBlyQq0O/q/sQBFp4xvrQmMX4fx7T//Qg/t+D//yEwjs
GheVqnDLAFOLacq3JaAK9bssPKK6NMrhOnarfw4YNMnBNOFgVNvzdEPGKaHpK4y/
pQGnvPkOmADGC2pYWpHHYZp6/+E13wH7SQ+QkidMa67FyRt9hTzEoiWJ5iT559k=
=0lA1
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: