GitHub Advisory DatabaseGHSA-V725-C588-H936OpenStack Nova Changing vnic_type breaks compute service restart
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
6.9 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.4%
An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and 25.x before 25.0.2. By creating a neutron port with the direct vnic_type, creating an instance bound to that port, and then changing the vnic_type of the bound port to macvtap, an authenticated user may cause the compute service to fail to restart, resulting in a possible denial of service. Only Nova deployments configured with SR-IOV are affected.
Affected configurations
References
bugs.launchpad.net/ossa/+bug/1981813
github.com/advisories/GHSA-v725-c588-h936
github.com/openstack/nova/commit/0c87681135cfb3ce61d2a0392928c1dbc1fe5fde
github.com/openstack/nova/commit/1a98a1a650d065a8ab3e1c474f3b9fd537dc2206
github.com/openstack/nova/commit/4954f993680c75fd9d3d507f2dcd00300c9b3d44
github.com/openstack/nova/commit/a28c82719545d5c8ee7f3ff1361b3a796e05095a
github.com/openstack/nova/commit/e43bf900dc8ca66578603bed333c56b215b1876e
github.com/openstack/nova/commit/f8c91eb75fc5504a37fc3b4be1d65d33dbc9b511
nvd.nist.gov/vuln/detail/CVE-2022-37394
review.opendev.org/c/openstack/nova/+/849985
review.opendev.org/c/openstack/nova/+/850003
Related
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
6.9 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.4%