CVE - CVE-2017-7543

CVE-ID
CVE-2017-7543	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
A race-condition flaw was discovered in openstack-neutron before 7.2.0-12.1, 8.x before 8.3.0-11.1, 9.x before 9.3.1-2.1, and 10.x before 10.0.2-1.1, where, following a minor overcloud update, neutron security groups were disabled. Specifically, the following were reset to 0: net.bridge.bridge-nf-call-ip6tables and net.bridge.bridge-nf-call-iptables. The race was only triggered by an update, at which point an attacker could access exposed tenant VMs and network resources.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7543 REDHAT:RHSA-2017:2447 URL:https://access.redhat.com/errata/RHSA-2017:2447 REDHAT:RHSA-2017:2448 URL:https://access.redhat.com/errata/RHSA-2017:2448 REDHAT:RHSA-2017:2449 URL:https://access.redhat.com/errata/RHSA-2017:2449 REDHAT:RHSA-2017:2450 URL:https://access.redhat.com/errata/RHSA-2017:2450 REDHAT:RHSA-2017:2451 URL:https://access.redhat.com/errata/RHSA-2017:2451 REDHAT:RHSA-2017:2452 URL:https://access.redhat.com/errata/RHSA-2017:2452 BID:100237 URL:http://www.securityfocus.com/bid/100237
Assigning CNA
Red Hat, Inc.
Date Entry Created
20170405	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20170405)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org