CVE-2014-3708

Priority
Description
OpenStack Compute (Nova) before 2014.1.4 and 2014.2.x before 2014.2.1
allows remote authenticated users to cause a denial of service (CPU
consumption) via an IP filter in a list active servers API request.
Notes
Package
Source: nova (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1:2014.1.4-0ubuntu1])
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (1:2015.1~b1-0ubuntu5)
Patches:
Upstream:https://review.openstack.org/131462 (juno)
Upstream:https://review.openstack.org/131461 (icehouse)
Upstream:https://review.openstack.org/131460 (kilo)
More Information

Updated: 2020-01-29 19:49:50 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)