CVEs related to bugs in neutron

Open bugs

Bug CVE(s)
Bug #1502933: [OSSA-2016-009] ICMPv6 anti-spoofing rules are too permissive (CVE-2015-8914) CVE-2015-8914
CVE-2016-5362
CVE-2016-5363
neutron Fix committed by Dustin Lundquist
Bug #1734320: Eavesdropping private traffic CVE-2018-14636
neutron Fix committed by sean mooney

Resolved bugs

Bug CVE(s)
Bug #997763: floating ips are not disassociated from instances on deletion CVE-2012-3360
CVE-2012-3361
CVE-2012-3371
CVE-2012-3447
neutron Fix released, assigned to dan wendlandt
Bug #1053364: Add SIGPIPE handler to subprocess execution in rootwrap and utils.execute CVE-2012-5625
neutron Fix released, assigned to Thierry Carrez
Bug #1100282: [OSSA 2013-004] DoS through XML entity expansion (CVE-2013-1664) CVE-2013-1664
neutron Fix released, assigned to Davanum Srinivas (DIMS)
Bug #1188189: Some server-side 'SSL' communication fails to check certificates (use of HTTPSConnection) CVE-2013-2255
neutron Fix released, assigned to Daniel Gollub
Bug #1190229: [OSSA 2013-023] Potential unsafe XML usage (CVE-2013-4179, CVE-2013-4202) CVE-2013-4179
CVE-2013-4202
neutron Invalid (unassigned)
Bug #1235450: [OSSA 2013-033] Metadata queries from Neutron to Nova are not restricted by tenant (CVE-2013-6419) CVE-2013-6419
neutron Fix released, assigned to Aaron Rosen
Bug #1243327: [OSSA 2014-008] Routers can be cross plugged by other tenants (CVE-2014-0056) CVE-2014-0056
neutron Fix released, assigned to Aaron Rosen
Bug #1300785: [OSSA 2014-014] neutron allows security group rules with invalid cidrs, resulting in broken iptables rules (breaking iptables-restore) (CVE-2014-0187) CVE-2014-0187
neutron Fix released, assigned to Aaron Rosen
Bug #1309195: [OSSA 2014-019] IPv6 prefix shouldn't be added in the NAT table (CVE-2014-4167) CVE-2014-4167
neutron Fix released, assigned to Baodong (Robert) Li
Bug #1321080: [OSSA 2014-021] auth token is exposed in meter http.request (CVE-2014-4615) CVE-2014-4615
neutron Fix released, assigned to gordon chung
Bug #1336207: [OSSA 2014-025] There is no quota for allowed address pair (CVE-2014-3555) CVE-2014-3555
neutron Fix released, assigned to Liping Mao
Bug #1337801: Port's device_owner field should not be editable CVE-2014-0056
neutron Invalid by Vishal Agarwal
Bug #1357379: [OSSA 2014-031] policy admin_only rules not enforced when changing value to default (CVE-2014-6414) CVE-2014-6414
neutron Fix released, assigned to Elena Ezhova
Bug #1378450: [OSSA 2014-039] Maliciously crafted dns_nameservers will crash neutron (CVE-2014-7821) CVE-2014-7821
neutron Fix released, assigned to Tristan Cacqueray
Bug #1399172: [OSSA 2015-001] L3 agent DoS vulnerability (CVE-2014-8153) CVE-2014-8153
neutron Fix released (unassigned)
Bug #1461054: [OSSA 2015-012] Adding 0.0.0.0/0 to allowed address pairs breaks l2 agent (CVE-2015-3221) CVE-2015-3221
neutron Fix released, assigned to Aaron Rosen
Bug #1489111: [OSSA 2015-018] IP, MAC, and DHCP spoofing rules can by bypassed by changing device_owner (CVE-2015-5240) CVE-2015-5240
neutron Fix released, assigned to Tristan Cacqueray
Bug #1529836: Fix deprecated library function (os.popen()). CVE-2016-0738
neutron Fix released (unassigned)
Bug #1558658: [OSSA-2016-009] Security Groups do not prevent MAC and/or IPv4 spoofing in DHCP requests (CVE-2016-5362 and CVE-2016-5363) CVE-2015-8914
CVE-2016-5362
CVE-2016-5363
neutron Fix released, assigned to Kevin Benton
Bug #1721063: vulnerability in dnsmasq CVE-2017-13704
CVE-2017-14491
CVE-2017-14492
CVE-2017-14493
CVE-2017-14494
CVE-2017-14495
CVE-2017-14496
neutron Won't fix (unassigned)
Bug #1818385: [OSSA-2019-001] It's possible to add a security group rule for VRRP with a dport (CVE-2019-9735) CVE-2019-9735
neutron Fix released, assigned to Brian Haley