4 matches found
RHEL 6 / 7 : openstack-neutron (RHSA-2015:1909)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2015:1909 advisory. OpenStack Networking neutron is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main...
Security Bulletin: OpenStack vulnerabilities affect IBM SmartCloud Entry(CVE-2015-5240 CVE-2015-3280)
Summary IBM SmartCloud Entry is vulnerable to a Nova vulnerability that allows a remote authenticated attacker to cause a denial of service. IBM SmartCloud Entry is vulnerable to a Neutron vulnerability that allows an attacker to bypass firewall rules and gain access to applications. Vulnerabilit...
CVE-2015-5240
Race condition in OpenStack Neutron before 2014.2.4 and 2015.1 before 2015.1.2, when using the ML2 plugin or the security groups AMQP API, allows remote authenticated users to bypass IP anti-spoofing controls by changing the device owner of a port to start with network: before the security group...
CVE-2015-5240
CVE-2015-5240 is a race-condition flaw in OpenStack Neutron prior to 2014.2.4 and 2015.1 prior to 2015.1.2 that affects the ML2 plugin or the security groups AMQP API. An authenticated user could bypass IP anti-spoofing/firewall checks by changing the owner of a port to start with network: after ...