(RHSA-2019:0916) Important: Red Hat Enterprise Linux OpenStack Platform security update

2019-04-3016:30:39

access.redhat.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

73.9%

JSON

OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines.

The following packages have been upgraded to a later upstream version: openstack-neutron (9.4.1), openstack-neutron-lbaas (9.2.2), python-networking-bigswitch (9.42.14). (BZ#1684242)

Security Fix(es):

openstack-neutron: incorrect validation of port settings in iptables security group driver (CVE-2019-9735)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7noarchpython-neutron-lbaas-tests< 9.2.2-8.el7ostpython-neutron-lbaas-tests-9.2.2-8.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-bigswitch-lldp< 9.42.14-1.el7ostopenstack-neutron-bigswitch-lldp-9.42.14-1.el7ost.noarch.rpm
RedHat7noarchpython-networking-bigswitch< 9.42.14-1.el7ostpython-networking-bigswitch-9.42.14-1.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-lbaas< 9.2.2-8.el7ostopenstack-neutron-lbaas-9.2.2-8.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-sriov-nic-agent< 9.4.1-40.el7ostopenstack-neutron-sriov-nic-agent-9.4.1-40.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-metering-agent< 9.4.1-40.el7ostopenstack-neutron-metering-agent-9.4.1-40.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-ml2< 9.4.1-40.el7ostopenstack-neutron-ml2-9.4.1-40.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-openvswitch< 9.4.1-40.el7ostopenstack-neutron-openvswitch-9.4.1-40.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-rpc-server< 9.4.1-40.el7ostopenstack-neutron-rpc-server-9.4.1-40.el7ost.noarch.rpm
RedHat7noarchopenstack-neutron-common< 9.4.1-40.el7ostopenstack-neutron-common-9.4.1-40.el7ost.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	noarch	python-neutron-lbaas-tests	< 9.2.2-8.el7ost	python-neutron-lbaas-tests-9.2.2-8.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-bigswitch-lldp	< 9.42.14-1.el7ost	openstack-neutron-bigswitch-lldp-9.42.14-1.el7ost.noarch.rpm
RedHat	7	noarch	python-networking-bigswitch	< 9.42.14-1.el7ost	python-networking-bigswitch-9.42.14-1.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-lbaas	< 9.2.2-8.el7ost	openstack-neutron-lbaas-9.2.2-8.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-sriov-nic-agent	< 9.4.1-40.el7ost	openstack-neutron-sriov-nic-agent-9.4.1-40.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-metering-agent	< 9.4.1-40.el7ost	openstack-neutron-metering-agent-9.4.1-40.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-ml2	< 9.4.1-40.el7ost	openstack-neutron-ml2-9.4.1-40.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-openvswitch	< 9.4.1-40.el7ost	openstack-neutron-openvswitch-9.4.1-40.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-rpc-server	< 9.4.1-40.el7ost	openstack-neutron-rpc-server-9.4.1-40.el7ost.noarch.rpm
RedHat	7	noarch	openstack-neutron-common	< 9.4.1-40.el7ost	openstack-neutron-common-9.4.1-40.el7ost.noarch.rpm