Launchpad.net

CVE 2014-7821

OpenStack Neutron before 2014.1.4 and 2014.2.x before 2014.2.1 allows remote authenticated users to cause a denial of service (crash) via a crafted dns_nameservers value in the DNS configuration.

Related bugs and status

CVE-2014-7821 (Candidate) is related to these bugs:

Bug #1378450: [OSSA 2014-039] Maliciously crafted dns_nameservers will crash neutron (CVE-2014-7821)

		In	Importance	Status
1378450	[OSSA 2014-039] Maliciously crafted dns_nameservers will crash neutron (CVE-2014-7821)	neutron	High	Fix Released
1378450	[OSSA 2014-039] Maliciously crafted dns_nameservers will crash neutron (CVE-2014-7821)	OpenStack Security Advisory	High	Fix Released
1378450	[OSSA 2014-039] Maliciously crafted dns_nameservers will crash neutron (CVE-2014-7821)	neutron icehouse	Undecided	Fix Committed
1378450	[OSSA 2014-039] Maliciously crafted dns_nameservers will crash neutron (CVE-2014-7821)	neutron juno	High	Fix Released

Bug #1391938: Neutron DoS through invalid DNS configuration (CVE-2014-7821)

		In	Importance	Status
1391938	Neutron DoS through invalid DNS configuration (CVE-2014-7821)	Mirantis OpenStack	Critical	Fix Committed
1391938	Neutron DoS through invalid DNS configuration (CVE-2014-7821)	Mirantis OpenStack 5.1.x	Critical	Fix Committed
1391938	Neutron DoS through invalid DNS configuration (CVE-2014-7821)	Mirantis OpenStack 5.0.x	Critical	Fix Committed
1391938	Neutron DoS through invalid DNS configuration (CVE-2014-7821)	Mirantis OpenStack 6.0.x	Critical	Fix Committed

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2014-7821

Related bugs and status

Related bugs

References