Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Important: Red Hat Enterprise Linux OpenStack Platform security update

Related Vulnerabilities: CVE-2019-9735   CVE-2019-9735   CVE-2019-9735   CVE-2019-9735  

Source

Synopsis

Important: Red Hat Enterprise Linux OpenStack Platform security update

Type/Severity

Security Advisory: Important

Topic

An update for openstack-neutron, openstack-neutron-lbaas, and python-networking-bigswitch is now available for Red Hat OpenStack Platform 10.0 (Newton).

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines.

The following packages have been upgraded to a later upstream version: openstack-neutron (9.4.1), openstack-neutron-lbaas (9.2.2), python-networking-bigswitch (9.42.14). (BZ#1684242)

Security Fix(es):

  • openstack-neutron: incorrect validation of port settings in iptables security group driver (CVE-2019-9735)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat OpenStack 10 x86_64

Fixes

  • BZ - 1578844 - Transient virtual interface creation failures in dynamic environment
  • BZ - 1637463 - Heat delete does not work if router has more than one subnet interface attached
  • BZ - 1656398 - Multiple VMs stuck at Powering-On state after restart of overcloud nodes
  • BZ - 1656443 - Supported migration path to migrate from "Openvswitch Firewall Driver"
  • BZ - 1665239 - [rhos-prio] StaleDataError: UPDATE statement on table 'standardattributes' expected to update 1 row(s); 0 were matched when creating a lot of security group rules through heat
  • BZ - 1666666 - [IPV6] tempest test fails - test_multi_prefix_dhcpv6_stateless
  • BZ - 1684242 - Request to upgrade BigSwitch related packages to 9.42.14-1 in OSP10
  • BZ - 1684533 - net.ipv6.conf.all.forwarding disabled in qrouter causing inter-tenant to fail when neutron router does not have a gateway
  • BZ - 1690387 - CVE-2019-9735 openstack-neutron: incorrect validation of port settings in iptables security group driver (OSSA-2019-001) [openstack-10]
  • BZ - 1690745 - CVE-2019-9735 openstack-neutron: incorrect validation of port settings in iptables security group driver

CVEs

References

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started