Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
98
security advisorydenial of serviceRed HatRed Hat: RHSA-2018-3792-01 Moderate: OpenStack Neutron Denial of Service
An update for openstack-neutron is now available for Red Hat OpenStack Platform 12.0 (Pike). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-neutron security update Advisory ID: RHSA-2018:3792-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2018:3792 Issue date: 2018-12-05 CVE Names: CVE-2018-14635 ==================================================================== 1. Summary: An update for openstack-neutron is now available for Red Hat OpenStack Platform 12.0 (Pike). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 12.0 - noarch 3. Description: OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines. Security Fix(es): * openstack-neutron: A router interface out of subnet IP range results in a denial of service (CVE-2018-14635) For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1530131 - test_create_update_port_with_dns_domain failed withKeyError: 'dns_domain' 1539638 - neutron tempest scenario "test_from_legacy_to_ha" fails 1607822 - CVE-2018-14635 openstack-neutron: A router interface out of subnet IP range results in a denial of service 6. Package List: Red Hat OpenStack Platform 12.0: Source: openstack-neutron-11.0.4-6.el7ost.src.rpm noarch: openstack-neutron-11.0.4-6.el7ost.noarch.rpm openstack-neutron-common-11.0.4-6.el7ost.noarch.rpm openstack-neutron-linuxbridge-11.0.4-6.el7ost.noarch.rpm openstack-neutron-macvtap-agent-11.0.4-6.el7ost.noarch.rpm openstack-neutron-metering-agent-11.0.4-6.el7ost.noarch.rpm openstack-neutron-ml2-11.0.4-6.el7ost.noarch.rpm openstack-neutron-openvswitch-11.0.4-6.el7ost.noarch.rpm openstack-neutron-rpc-server-11.0.4-6.el7ost.noarch.rpm openstack-neutron-sriov-nic-agent-11.0.4-6.el7ost.noarch.rpm python-neutron-11.0.4-6.el7ost.noarch.rpm python-neutron-tests-11.0.4-6.el7ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-14635 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXAgeWNzjgjWX9erEAQhwfA/7BzYP7BlH4YjPL8OJwlHCQ9I/1BHIMdEs pSdh4ufbSLUgG8IA2scGWXRee4NzGdhU+IwjyCDihVrglNizMEZpb6FVNuzMvhLI U2767OyZFKIllS6GEjgncbsabsVZTPh3rxH3KuJx/+hJLZGRdDAPxxahOEaP63AP cnW2U0QVkhXdU1yUlSJnAmTolLI0UPYEEVXt/mbGYV8WT0zuq01yrSmYG3CaJEl1 KU2J5sYInTQ9918eGuJ40+xFogDkpTiEeRyu4ruVxGmF/jTr4y4dXFXsJ5nRhktu MalK+uO5RINKlWnOXyfky+1kNAkMKcgvyD5pYqjwSQQGb51Lyj1/cQWiU41O8fBq AoWrttfhORrfwgdyWwwluhaL94DMHZuOGyFxc+sCM0FHfpvOIw1C5blDgp9v5mnG 4Hc4ObCnNsznDI9OSsfOWxTfcVnkccaEmYypgBeYFsQ1Kf2as2dHnAPDtmZ7e/U1 T1HxkxUjIkXwP0KlvY3l42t5d1ctMvGG87+lec7AnVxSLwitDIewnCQT2ytY9MRM ZN/0Hh54w2MUBq4hEZaDz9UTf7qL5SINHCf5Dirpbiaz06gfSBrL2glTKL2oeGE5 P4YgvQK7I0kNsYMlusrSbXle6HOXRz8fawbZhBvBCzMlTzVSxAsN3lAf/ZRRWZU/ Q1zKbI4dK0U=8xKl -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Dec 05, 2018
Red Hat
98
security advisorymoderatedenial of serviceRed Hat OpenStack 10.0: RHSA-2018-2715 Moderate: OpenStack-Neutron Bug Fix
An update for openstack-neutron is now available for Red Hat OpenStack Platform 10.0 (Newton). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-neutron security and bug fix update Advisory ID: RHSA-2018:2715-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2018:2715 Issue date: 2018-09-17 CVE Names: CVE-2018-14635 ==================================================================== 1. Summary: An update for openstack-neutron is now available for Red Hat OpenStack Platform 10.0 (Newton). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 10.0 - noarch 3. Description: OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines. Security Fix(es): * openstack-neutron: A router interface out of subnet IP range results in a denial of service (CVE-2018-14635) For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. Bug Fix(es): * A new configuration option bridge_mac_table_size has been added for the neutron OVS agent. This value is set on every Open vSwitch bridge managed by the openvswitch-neutron-agent. The value controls the maximum number of MAC addresses that can be learned on abridge. The default value for this new option is 50,000, which should be enough for most systems. Values outside a reasonable range (10 to 1,000,000) might be overridden by Open vSwitch. (BZ#1589031) * Previously, when a VM was destroyed, the IPv6 lease was not removed from dnsmasq lease files due to a missing dhcp_release6 binary. With this update, the dhcp_release6 binary is now provided in an updated dnsmasq-utils package version. (BZ#1545006) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1404709 - Neutron L3 Agent: AZLeastRoutersScheduler scheduler bug 1511394 - FlushError on IPAllocations when multiple subnets in the same network deleted 1532280 - ovs-vswitchd service hangs with Error too many open files 1545006 - openstack-neutron DHCP agent requires dnsmasq-utils 2.76 1561907 - test_sriov is failing on OSP10 1570908 - Cannot set --no-share on shared network that has floating_ip, gateway AND a tenant port 1575356 - [CI] Issue with addCleanup method causing scenario tests to fail 1576256 - neutron-openvswitch-agent cleans up stale flows months after they were created but it does not recreated correct flows and bridge configuration 1578414 - Sometimes dhcp_release packet isn't reaching dnsmasq process because it's being reloaded 1579400 - Neutron agents attach untagged ports to br-int, which will be trunk port if neutron-openvswitch-agent never handles them 1584845 - Packet loss during standby L3 agent restart 1589031 - The mac table size of neutron bridges (br-tun, br-int, br-*) is too small by default and eventually makes openvswitch explode 1607822 - CVE-2018-14635 openstack-neutron: A router interface out of subnet IP range results in a denial of service 6. Package List: Red Hat OpenStack Platform10.0: Source: openstack-neutron-9.4.1-28.el7ost.src.rpm noarch: openstack-neutron-9.4.1-28.el7ost.noarch.rpm openstack-neutron-common-9.4.1-28.el7ost.noarch.rpm openstack-neutron-linuxbridge-9.4.1-28.el7ost.noarch.rpm openstack-neutron-macvtap-agent-9.4.1-28.el7ost.noarch.rpm openstack-neutron-metering-agent-9.4.1-28.el7ost.noarch.rpm openstack-neutron-ml2-9.4.1-28.el7ost.noarch.rpm openstack-neutron-openvswitch-9.4.1-28.el7ost.noarch.rpm openstack-neutron-rpc-server-9.4.1-28.el7ost.noarch.rpm openstack-neutron-sriov-nic-agent-9.4.1-28.el7ost.noarch.rpm python-neutron-9.4.1-28.el7ost.noarch.rpm python-neutron-tests-9.4.1-28.el7ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-14635 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBW5/b9NzjgjWX9erEAQhAwA/+MyO8MCtJxd8m+n1MjfAIlpkU6MKJOd9b IL9Q4uRqJch2uE2o0PS5BbjPZ1zRD8757gCobjSs8j99xyLo9lcLeszvBIzXGxY9 znHh5vo4JAfRNwciqBb+pe2SfuE70cP7tKvLw8uL9udcUjX8uCT0g9jpF2Xjae23 ZZr6A7q4a78kwJZXMmOrpjNIAob2AaqdB1Ja0Bhh07VsSg3Yme4mZPhd2gbCbpBN 5/ObuGej8POk+UUIrryRnkqVyL1KKmUpSDK78Z9wwdth1KA0GpJ5MyLPw0q6695K mSqyaKHrqUG46awWDM420g6WxcN4vH27ssEgcCdYKk0Nn1MMgAnCiXwXYLUsvf/n cEtNYoShyAxedp0qfOkIk8u41Gx5vnQAUKlgmpoJuNUJEp5gutl468rrvPgrbGW/ kpUO6X0+ksTOT5VgSLF/HXeezPztiQkjp4WT9oTOv59In/ag+9abvmmWSlzRhvlG /hQeXWG5Lq0NDgCAJ5ISeeNV7sm238kXcknbHiXr3HRQz4LKNukHSGG+r0ICQwFF Ud/zcnHR8g46cvzaFe1SK+O+OD9Rd/Idzk22nGFH/C/crpMfHF1LnYvG0tebE4Xa ZMs2E5FF02w+Z/rTeEPkKQAdKi8rvn8KOHGABMrsR9E1qXWViOh8SDQ8npIcWlCM b3/UV83nYYY=SViz -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Sep 17, 2018
Red Hat
89
security advisoryfedorasoftware updateFedora 20: Security Advisory on Openstack-Neutron DoS Issue - Critical Fix
2013.2.4 rebase; CVE-2014-7821 fixed.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-5997 2015-04-11 04:34:30 -------------------------------------------------------------------------------- Name : openstack-neutron Product : Fedora 20 Version : 2013.2.4 Release : 8.fc20 URL : https://launchpad.net/neutron/ Summary : OpenStack Networking Service Description : Neutron is a virtual network service for Openstack. Just like OpenStack Nova provides an API to dynamically request and configure virtual servers, Neutron provides an API to dynamically request and configure virtual networks. These networks connect "interfaces" from other OpenStack services (e.g., virtual NICs from Nova VMs). The Neutron API supports extensions to provide advanced network capabilities (e.g., QoS, ACLs, network monitoring, etc.) -------------------------------------------------------------------------------- Update Information: 2013.2.4 rebase; CVE-2014-7821 fixed. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 9 2015 Ihar Hrachyshka 2013.2.4-8 - CVE-2014-7821: Fix hostname validation for nameservers, rhbz#1165887 - CVE-2014-7821: Fix hostname regex pattern, rhbz#1165887 * Fri Oct 10 2014 Ihar Hrachyshka 2013.2.4-7 - Readded python-pbr as dependency (was dropped during el6-havana merge). * Fri Oct 10 2014 Ihar Hrachyshka 2013.2.4-6 - Fixed an error in %pre rule that adds neutron user that was introduced during el6-havana branch merged. * Wed Oct 8 2014 Ihar Hrachyshka 2013.2.4-5 - use parallel installed versions in RHEL6 * Mon Sep 29 2014 Ihar Hrachyshka 2013.2.4-4 - enforce force_gateway_on_subnet=True in neutron-dist.conf, rhbz#1090553 * Thu Sep 25 2014 Ihar Hrachyshka 2013.2.4-3 - Forbid regular users to reset admin-only attrs to default values, rhbz#1142013 * Mon Sep 22 2014 Ihar Hrachyshka 2013.2.4-2 - Merged in el6-havana branch, resolving conflictsbetween platforms with if-else conditionals. This is needed because el6-havana was (erroneously) locked when locking el6 branch. * Mon Sep 22 2014 Ihar Hrachyshka 2013.2.4-1 - Update to upstream 2013.2.4 * Wed Jul 23 2014 Ihar Hrachyshka 2013.2.3-13 - no quota for allowed address pair, rhbz#1122428 * Wed Jul 16 2014 Miguel Ãngel Ajo 2013.2.3-12 - Moved all plugin sources to python-neutron to avoid breaking hidden upstream dependencies from agents to plugins, etc. fixes rhbz#1120146 - Removed the hyper-v agent exclude. - Added a few LICENSE files to packages that missed it. * Tue Jun 24 2014 Ihar Hrachyshka 2013.2.3-11 - Send SIGTERM signal only to parent process when stopping neutron service, bz#1110642 * Tue Jun 24 2014 Ihar Hrachyshka 2013.2.3-10 - Notify systemd when starting Neutron server, bz#1063427 * Tue Jun 17 2014 Ihar Hrachyshka 2013.2.3-9 - Install SNAT rules for ipv4 only, bz#1110142 * Wed Jun 11 2014 Ihar Hrachyshka 2013.2.3-8 - Ensure routing key is specified in the address for a direct producer, bz#1108025 * Mon May 19 2014 Ihar Hrachyshka 2013.2.3-7 - netaddr
Apr 21, 2015
•Critical
Fedora
98
security advisorybug fixDoSModerate Advisory RHSA-2014:1938-01 for DoS Vulnerability in Neutron
Updated openstack-neutron packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-neutron security and bug fix update Advisory ID: RHSA-2014:1938-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2014:1938.html Issue date: 2014-12-02 CVE Names: CVE-2014-7821 ==================================================================== 1. Summary: Updated openstack-neutron packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux OpenStack Platform 5.0 for RHEL 6 - noarch 3. Description: OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines. As of Red Hat Enterprise Linux OpenStack Platform 4.0, 'neutron' replaces 'quantum' as the core component of OpenStack Networking. A denial of service flaw was found in the way neutron handled the 'dns_nameservers' parameter. By providing specially crafted 'dns_nameservers' values, an authenticated user could use this flaw to crash the neutron service. (CVE-2014-7821) Red Hat would like to thank the OpenStack project for reporting this issue. Upstream acknowledges Henry Yamauchi, Charles Neill, and Michael Xin (Rackspace) as the original reporters. This update also fixes the followingbug: * The "/var/log/neutron/" directory was world-readable. With this update, world-read permissions have been removed. (BZ#1149688) All openstack-neutron users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1149688 - /var/log/neutron/ and all logs within it are world readable. 1163457 - CVE-2014-7821 openstack-neutron: DoS via maliciously crafted dns_nameservers 6. Package List: Red Hat Enterprise Linux OpenStack Platform 5.0 for RHEL6: Source: openstack-neutron-2014.1.3-12.el6ost.src.rpm noarch: openstack-neutron-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-bigswitch-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-brocade-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-cisco-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-embrane-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-hyperv-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-ibm-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-linuxbridge-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-mellanox-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-metaplugin-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-metering-agent-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-midonet-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-ml2-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-nec-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-nuage-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-ofagent-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-oneconvergence-nvsd-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-openvswitch-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-plumgrid-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-ryu-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-vmware-2014.1.3-12.el6ost.noarch.rpm openstack-neutron-vpn-agent-2014.1.3-12.el6ost.noarch.rpm python-neutron-2014.1.3-12.el6ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2014-7821 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. . Caution notice for openstack-neutron tackling DoS vulnerabilities and correcting glitches in RHEL OpenStack version 5.0.. OpenStack Networking, Neutron Security, Red Hat Update. . LinuxSecurity.com Team
Dec 02, 2014
Red Hat
98
security advisorymoderatedenial of serviceRed Hat: RHSA-2014:1785-01 Moderate: OpenStack Neutron DoS Risk
Updated openstack-neutron packages that fix one security issue, several bugs, and add multiple enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-neutron security, bug fix, and enhancement update Advisory ID: RHSA-2014:1785-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2014:1785.html Issue date: 2014-11-03 CVE Names: CVE-2014-6414 ==================================================================== 1. Summary: Updated openstack-neutron packages that fix one security issue, several bugs, and add multiple enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux OpenStack Platform 5.0 for RHEL 6 - noarch 3. Description: OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines. As of Red Hat Enterprise Linux OpenStack Platform 4.0, 'neutron' replaces 'quantum' as the core component of OpenStack Networking. It was discovered that unprivileged users could in some cases reset admin-only network attributes to their default values. This could lead to unexpected behavior or in some cases result in a denial of service. (CVE-2014-6414) The openstack-neutron packages have been upgraded to upstream version 2014.1.3, which provides a number of bug fixes and enhancements over the previous version.(BZ#1149753) All openstack-neutron users are advised to upgrade to these updated packages, which correct these issues and add these enhancements. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1142012 - CVE-2014-6414 openstack-neutron: Admin-only network attributes may be reset to defaults by non-privileged users1144329 - Remove dnsmasq version warning for dhcp-agent on RHEL 1149753 - Rebase openstack-neutron to 2014.1.3 1151524 - [RFE][neutron]: Config option to control visibility of cisco-policy-profile resources for tenants 1151531 - [RFE][neutron]: Ability to assign cisco nw profile to multi-tenants in single request 1159076 - l3-agent error : Executable not found: conntrack (filter match = conntrack) 6. Package List: Red Hat Enterprise Linux OpenStack Platform 5.0 for RHEL6: Source: openstack-neutron-2014.1.3-8.el6ost.src.rpm python-neutronclient-2.3.4-3.el6ost.src.rpm noarch: openstack-neutron-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-bigswitch-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-brocade-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-cisco-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-embrane-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-hyperv-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-ibm-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-linuxbridge-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-mellanox-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-metaplugin-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-metering-agent-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-midonet-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-ml2-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-nec-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-nuage-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-ofagent-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-oneconvergence-nvsd-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-openvswitch-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-plumgrid-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-ryu-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-vmware-2014.1.3-8.el6ost.noarch.rpm openstack-neutron-vpn-agent-2014.1.3-8.el6ost.noarch.rpm python-neutron-2014.1.3-8.el6ost.noarch.rpm python-neutronclient-2.3.4-3.el6ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2014-6414 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2014 Red Hat, Inc. . Recent openstack-neutron updates address security vulnerabilities and improve features for Red Hat Enterprise Linux.. RedHat OpenStack Security Update, OpenStackNeutron Fix, Networking Platform Enhancements. . LinuxSecurity.com Team
Nov 03, 2014
Red Hat
98
security advisorysecurity updatered hatRed Hat 6 OpenStack: RHSA-2014:1339-01 Low Severity Networking Update
Updated openstack-neutron packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Low: openstack-neutron security and bug fix update Advisory ID: RHSA-2014:1339-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2014:1339.html Issue date: 2014-09-30 CVE Names: CVE-2014-3632 ==================================================================== 1. Summary: Updated openstack-neutron packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux OpenStack Platform 5.0 for RHEL 6 - noarch 3. Description: OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines. As of Red Hat Enterprise Linux OpenStack Platform 4.0, 'neutron' replaces 'quantum' as the core component of OpenStack Networking. It was discovered that the openstack-neutron package in Red Hat Enterprise Linux Open Stack Platform 5.0 for Red Hat Enterprise Linux 6 was released with a sudoers file containing a configuration error. This error caused OpenStack Networking to be vulnerable to the CVE-2013-6433 issue. (CVE-2014-3632) This update also fixes the following bugs: * Prior to this update, the Open vSwitch agent failed to process ports on the integration bridge that quicklydisappeared and reappeared during the processing loop. When such a failure occurred, the processing of the port was aborted (which is the correct behavior), but it was also marked as processed, meaning that the next updates for the port were not applied when it reappeared later. As a consequence, some ports were not VLAN-tagged correctly, and that resulted in no network connectivity for those instances that were bound to those ports. With this update, ports that are not on the integration bridge are still not processed but also not marked as such. Ports that disappear and then reappear later on the integration bridge are processed correctly, and VLAN tag updates are properly applied. (BZ#1123053) * This update fixes an issue that caused connectivity to be dropped when restarting the openvswitch service with l2pop enabled. (BZ#1120719) * Due to an incorrect version of the python-httplib2 package specified in the spec file, when a large amount of virtual machines (VMs) was launched, some of the VMs could be assigned two private IP addresses. (BZ#1126451) All openstack-neutron users are advised to upgrade to these updated packages, which correct these issues. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1126451 - VMs get 2 private IPs during launching of a large amount of VMs 1128194 - LBaaS extension doesn't register it's resources to quota engine 1140949 - CVE-2014-3632 openstack-neutron: regression of fix for CVE-2013-6433 6. Package List: Red Hat Enterprise Linux OpenStack Platform 5.0 for RHEL6: Source: openstack-neutron-2014.1.2-4.el6ost.src.rpm noarch: openstack-neutron-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-bigswitch-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-brocade-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-cisco-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-hyperv-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-ibm-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-linuxbridge-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-mellanox-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-metaplugin-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-metering-agent-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-midonet-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-ml2-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-nec-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-ofagent-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-oneconvergence-nvsd-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-openvswitch-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-plumgrid-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-ryu-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-vmware-2014.1.2-4.el6ost.noarch.rpm openstack-neutron-vpn-agent-2014.1.2-4.el6ost.noarch.rpm python-neutron-2014.1.2-4.el6ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2014-3632 https://access.redhat.com/security/updates/classification#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. . New patch released for openstack-neutron addresses vulnerabilities and fixes bugs in Red Hat Enterprise Linux OpenStack Platform.. Red Hat Security Advisory, OpenStack Neutron Update, Networking Services Patch. . Severity: Low. LinuxSecurity.com Team
Sep 30, 2014
•Low
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!