Comment 9 for bug 1399172
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote Re: L3 agent DoS vulnerability | #9 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Thanks for the reviews, here is impact description draft #2:
Title: L3 agent denial of service with radvd 2.0+
Reporter: Ihar Hrachyshka (RH)
Products: Neutron
Versions: 2014.2 version up to 2014.2.1
Description:
Ihar Hrachyshka from Red Hat reported a vulnerability in Neutron. By creating 8 routers and assigning each of them a non-provider ipv6 subnet, a malicious user may block router update processing for all tenants, potentially resulting in a Denial of Service. Only Neutron setups running with radvd 2.0+ are affected.