neutron

Overview
Code
Bugs
Blueprints
Translations
Answers

Series icehouse
Bug #1443798
Comment #6

Comment 6 for bug 1443798

Revision history for this message

Armando Migliaccio (armando-migliaccio) wrote on 2015-04-15:

@Jeremy: the effect to other tenants may be in the form of increased delay in server response time; I don't think this can really be classified as Denial Of Service Attack: sure, lots of invalid subnets can be created, but there're a quota involved per tenant.

Having said that, this belongs to the class of validation bugs as raised here:

https://bugs.launchpad.net/neutron/+bug/1271311
https://bugs.launchpad.net/neutron/+bug/1333134
https://bugs.launchpad.net/neutron/+bug/1362651

To the best of my knowledge, none of them got were treated as security vulnerabilities, so I'd recommend to open this up so that we can fix it in time for the Kilo release. The fix should also be fairly trivial and easier to backport.