CVE-2014-3708

Priority
Description
OpenStack Compute (Nova) before 2014.1.4 and 2014.2.x before 2014.2.1
allows remote authenticated users to cause a denial of service (CPU
consumption) via an IP filter in a list active servers API request.
Package
Source: nova (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 LTS (Trusty Tahr):released (1:2014.1.4-0ubuntu1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (1:2015.1~b1-0ubuntu5)
Patches:
Upstream:https://review.openstack.org/131462 (juno)
Upstream:https://review.openstack.org/131461 (icehouse)
Upstream:https://review.openstack.org/131460 (kilo)
More Information

Updated: 2019-01-14 22:14:01 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)