|
Bug #997763: floating ips are not disassociated from instances on deletion
|
 CVE-2012-3360
CVE-2012-3361
CVE-2012-3371
CVE-2012-3447 |
|
neutron
|
Fix released, assigned to dan wendlandt
|
|
Bug #1053364: Add SIGPIPE handler to subprocess execution in rootwrap and utils.execute
|
CVE-2012-5625 |
|
neutron
|
Fix released, assigned to Thierry Carrez
|
|
Bug #1100282: [OSSA 2013-004] DoS through XML entity expansion (CVE-2013-1664)
|
CVE-2013-1664 |
|
neutron
|
Fix released, assigned to Davanum Srinivas (DIMS)
|
|
Bug #1188189: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection)
|
CVE-2013-2255 |
|
neutron
|
Fix released, assigned to Daniel Gollub
|
|
Bug #1190229: [OSSA 2013-023] Potential unsafe XML usage (CVE-2013-4179, CVE-2013-4202)
|
CVE-2013-4179
CVE-2013-4202 |
|
neutron
|
Invalid (unassigned)
|
|
Bug #1235450: [OSSA 2013-033] Metadata queries from Neutron to Nova are not restricted by tenant (CVE-2013-6419)
|
CVE-2013-6419 |
|
neutron
|
Fix released, assigned to Aaron Rosen
|
|
Bug #1243327: [OSSA 2014-008] Routers can be cross plugged by other tenants (CVE-2014-0056)
|
CVE-2014-0056 |
|
neutron
|
Fix released, assigned to Aaron Rosen
|
|
Bug #1300785: [OSSA 2014-014] neutron allows security group rules with invalid cidrs, resulting in broken iptables rules (breaking iptables-restore) (CVE-2014-0187)
|
CVE-2014-0187 |
|
neutron
|
Fix released, assigned to Aaron Rosen
|
|
Bug #1309195: [OSSA 2014-019] IPv6 prefix shouldn't be added in the NAT table (CVE-2014-4167)
|
CVE-2014-4167 |
|
neutron
|
Fix released, assigned to Baodong (Robert) Li
|
|
Bug #1321080: [OSSA 2014-021] auth token is exposed in meter http.request (CVE-2014-4615)
|
CVE-2014-4615 |
|
neutron
|
Fix released, assigned to gordon chung
|
|
Bug #1336207: [OSSA 2014-025] There is no quota for allowed address pair (CVE-2014-3555)
|
CVE-2014-3555 |
|
neutron
|
Fix released, assigned to Liping Mao
|
|
Bug #1337801: Port's device_owner field should not be editable
|
CVE-2014-0056 |
|
neutron
|
Invalid by Vishal Agarwal
|
|
Bug #1357379: [OSSA 2014-031] policy admin_only rules not enforced when changing value to default (CVE-2014-6414)
|
CVE-2014-6414 |
|
neutron
|
Fix released, assigned to Elena Ezhova
|
|
Bug #1378450: [OSSA 2014-039] Maliciously crafted dns_nameservers will crash neutron (CVE-2014-7821)
|
CVE-2014-7821 |
|
neutron
|
Fix released, assigned to Tristan Cacqueray
|
|
Bug #1399172: [OSSA 2015-001] L3 agent DoS vulnerability (CVE-2014-8153)
|
CVE-2014-8153 |
|
neutron
|
Fix released (unassigned)
|
|
Bug #1461054: [OSSA 2015-012] Adding 0.0.0.0/0 to allowed address pairs breaks l2 agent (CVE-2015-3221)
|
CVE-2015-3221 |
|
neutron
|
Fix released, assigned to Aaron Rosen
|
|
Bug #1489111: [OSSA 2015-018] IP, MAC, and DHCP spoofing rules can by bypassed by changing device_owner (CVE-2015-5240)
|
CVE-2015-5240 |
|
neutron
|
Fix released, assigned to Tristan Cacqueray
|
|
Bug #1502933: [OSSA-2016-009] ICMPv6 anti-spoofing rules are too permissive (CVE-2015-8914)
|
CVE-2015-8914
CVE-2016-5362
CVE-2016-5363 |
|
neutron
|
Fix released, assigned to Dustin Lundquist
|
|
Bug #1529836: Fix deprecated library function (os.popen()).
|
CVE-2016-0738 |
|
neutron
|
Fix released (unassigned)
|
|
Bug #1558658: [OSSA-2016-009] Security Groups do not prevent MAC and/or IPv4 spoofing in DHCP requests (CVE-2016-5362 and CVE-2016-5363)
|
CVE-2015-8914
CVE-2016-5362
CVE-2016-5363 |
|
neutron
|
Fix released, assigned to Kevin Benton
|
|
Bug #1721063: vulnerability in dnsmasq
|
CVE-2017-13704
CVE-2017-14491
CVE-2017-14492
CVE-2017-14493
CVE-2017-14494
CVE-2017-14495
CVE-2017-14496 |
|
neutron
|
Won't fix (unassigned)
|
|
Bug #1734320: Eavesdropping private traffic
|
CVE-2018-14636 |
|
neutron
|
Fix released, assigned to Rodolfo Alonso
|
|
Bug #1818385: [OSSA-2019-001] It's possible to add a security group rule for VRRP with a dport (CVE-2019-9735)
|
CVE-2019-9735 |
|
neutron
|
Fix released, assigned to Brian Haley
|
|
Bug #1902917: [OSSA-2021-001] Anti-spoofing bypass for Open vSwitch networks (CVE-2021-20267)
|
CVE-2015-8914
CVE-2021-20267 |
|
neutron
|
Fix released, assigned to Slawek Kaplonski
|
|
Bug #1907686: ovn: instance unable to retrieve metadata
|
CVE-2015-8011
CVE-2020-27827
CVE-2020-35498 |
|
neutron
|
Invalid (unassigned)
|
|
Bug #1938670: [OSSA-2021-004] Linuxbridge ARP filter bypass on Netfilter platforms (CVE-2021-38598)
|
CVE-2021-38598 |
|
neutron
|
Fix released, assigned to Rodolfo Alonso
|
|
Bug #1939733: [OSSA-2021-005] Arbitrary dnsmasq reconfiguration via extra_dhcp_opts (CVE-2021-40085)
|
CVE-2021-40085 |
|
neutron
|
Fix released, assigned to Slawek Kaplonski
|
|
Bug #1942179: [OSSA-2021-006] Routes middleware memory leak for nonexistent controllers (CVE-2021-40797)
|
CVE-2021-40797 |
|
neutron
|
Fix released (unassigned)
|
|
Bug #1988026: Neutron should not create security group with project==None
|
CVE-2022-3277 |
|
neutron
|
Fix released, assigned to Brian Haley
|
