Launchpad.net

CVE 2016-5362

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message.

Related bugs and status

CVE-2016-5362 (Candidate) is related to these bugs:

Bug #1502933: [OSSA-2016-009] ICMPv6 anti-spoofing rules are too permissive (CVE-2015-8914)

Summary				In	Importance	Status
	1502933	[OSSA-2016-009] ICMPv6 anti-spoofing rules are too permissive (CVE-2015-8914)		neutron	High	Fix Released
	1502933	[OSSA-2016-009] ICMPv6 anti-spoofing rules are too permissive (CVE-2015-8914)		OpenStack Security Advisory	Undecided	Fix Released

Bug #1558658: [OSSA-2016-009] Security Groups do not prevent MAC and/or IPv4 spoofing in DHCP requests (CVE-2016-5362 and CVE-2016-5363)

		In	Importance	Status
1558658	[OSSA-2016-009] Security Groups do not prevent MAC and/or IPv4 spoofing in DHCP requests (CVE-2016-5362 and CVE-2016-5363)	neutron	High	Fix Released
1558658	[OSSA-2016-009] Security Groups do not prevent MAC and/or IPv4 spoofing in DHCP requests (CVE-2016-5362 and CVE-2016-5363)	OpenStack Security Advisory	Undecided	Fix Released
1558658	[OSSA-2016-009] Security Groups do not prevent MAC and/or IPv4 spoofing in DHCP requests (CVE-2016-5362 and CVE-2016-5363)	neutron kilo	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2016-5362

Related bugs and status

Related bugs

References