Comment 18 for bug 1358583
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote Re: List instances by IP results in DoS of nova-network | #18 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Oups, Vish already post a patch! Thanks!
Here is impact description draft #1:
Title: Nova network DoS through ip filtering
Reporter: Mohammed Naser (Vexxhost)
Products: Nova
Versions: up to 2014.1.2
Description:
Mohammed Naser from Vexxhost reported a vulnerability in Nova network ip filtering. By listing active servers using an ip filter, an authenticated user may overload nova-network process, resulting in a denial of services. All Nova network setups are affected.