Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Wed, 8 Feb 2017 02:10:05 -0600
From: Tyler Hicks <tyhicks@...onical.com>
To: oss-security@...ts.openwall.com
Cc: James Page <james.page@...ntu.com>, security@...ntu.com
Subject: CVE Request: Nova-LXD incorrectly applied Neutron security group
 rules

Neutron security group rules were not being applied to Nova-LXD
instances due to improperly named veth pairs. This resulted in network
traffic to/from external hosts being incorrectly allowed.

Bug: https://launchpad.net/bugs/1656847
Fix:
https://github.com/openstack/nova-lxd/commit/1b76cefb92081efa1e88cd8f330253f857028bd2

Thank you!

Tyler



Download attachment "signature.asc" of type "application/pgp-signature" (802 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ