The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service (IPv4 address attachment outage) by attaching an IPv6 private subnet to a L3 router.
References
Link | Resource |
---|---|
http://seclists.org/oss-sec/2014/q2/572 | Mailing List Third Party Advisory |
http://secunia.com/advisories/59533 | Permissions Required |
http://www.ubuntu.com/usn/USN-2255-1 | Third Party Advisory |
https://bugs.launchpad.net/neutron/+bug/1309195 | Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2014-07-11T14:00:00
Updated: 2014-07-11T13:57:00
Reserved: 2014-06-17T00:00:00
Link: CVE-2014-4167
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-07-11T14:55:04.587
Modified: 2018-10-22T17:07:29.927
Link: CVE-2014-4167
JSON object: View
Redhat Information
No data.
CWE