Description
An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes where those security groups are present, because of an Open vSwitch (OVS) firewall KeyError. All Neutron deployments utilizing neutron-openvswitch-agent are affected.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6Attack Vector: Network
Complexity: Low
Privileges: Low
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: None
Availability: None
Affected Packages4 packages
🔴Vulnerability Details
4OSVOpenStack Neutron overlapping security group rules prevents compute node network configuration↗2022-05-13 GHSAOpenStack Neutron overlapping security group rules prevents compute node network configuration↗2022-05-13 OSVCVE-2019-10876: An issue was discovered in OpenStack Neutron 11↗2019-04-05 CVEListCVE-2019-10876: An issue was discovered in OpenStack Neutron 11↗2019-04-05 📋Vendor Advisories
2Red Hatopenstack-neutron: DOS via broken port range merging in security group↗2019-02-28 DebianCVE-2019-10876: neutron - An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12....↗2019 💬Community
4BugzillaCVE-2019-10876 openstack-neutron: DOS via broken port range merging in security group [openstack-rdo]↗2019-04-03 BugzillaCVE-2019-10876 openstack-neutron: DOS via broken port range merging in security group↗2019-04-03 BugzillaCVE-2019-10876 openstack-neutron: DOS via broken port range merging in security group [openstack-13-default]↗2019-04-03 BugzillaCVE-2018-10876 kernel: use-after-free in jbd2_journal_commit_transaction funtion↗2018-06-29