Openstack Compute (Nova) Denial of service via network request that triggers large number of iptables rules
Low severity
GitHub Reviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Nov 22, 2024
Description
Published by the National Vulnerability Database
Jun 7, 2012
Published to the GitHub Advisory Database
May 17, 2022
Reviewed
May 14, 2024
Last updated
Nov 22, 2024
Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number of iptables rules.
References