Comment 4 for bug 1300785
Revision history for this message
| Salvatore Orlando (salvatore-orlando) wrote Re: neutron allows security group rules with invalid cidrs, resulting in broken iptables rules (breaking iptables-restore) | #4 |
The scope of the potential damage can vary as suggested by Cristoph.
It's not really a DoS, more an issue where security groups could be de-enforced without a user knowing it, since no information would be reflected in ports' statuses.
I agree about the security concern, but since the original bug is open, a security embargo is hardly enforceable now.