Red Hat Product Errata RHSA-2018:2710 - Security Advisory

Issued:: 2018-09-17
Updated:: 2018-09-17

RHSA-2018:2710 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: openstack-neutron security update

Type/Severity

Security Advisory: Moderate

Topic

An update for openstack-neutron is now available for Red Hat OpenStack
Platform 13.0 (Queens).

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.

Description

OpenStack Networking (neutron) is a pluggable, scalable, and API-driven
system that provisions networking services to virtual machines. Its main
function is to manage connectivity to and from virtual machines.

Security Fix(es):

openstack-neutron: A router interface out of subnet IP range results in a denial of service (CVE-2018-14635)

For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.

Solution

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat OpenStack 13 x86_64
Red Hat OpenStack for IBM Power 13 ppc64le

Fixes

BZ - 1607822 - CVE-2018-14635 openstack-neutron: A router interface out of subnet IP range results in a denial of service

CVEs

CVE-2018-14635

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat OpenStack 13

SRPM
openstack-neutron-12.0.3-5.el7ost.src.rpm	SHA-256: b948a5e7edbcc8b38dacc0f1930d2835169b4adc8d253bda961c2a613c40fc54
x86_64
openstack-neutron-12.0.3-5.el7ost.noarch.rpm	SHA-256: 9dc7c08b0d0e786c9d40e8fd15f06a61d1126efe108427ce882b6df6eac38c07
openstack-neutron-common-12.0.3-5.el7ost.noarch.rpm	SHA-256: f40563f357da0129aa244773edffa9ddf0d6045bcd6b55f6e6b52391501d0714
openstack-neutron-linuxbridge-12.0.3-5.el7ost.noarch.rpm	SHA-256: 99e3969e2e17dbf670668a67e759eeef0af1193c828d6b515fe944b030a8f1a1
openstack-neutron-macvtap-agent-12.0.3-5.el7ost.noarch.rpm	SHA-256: f543ac253aae70179989776140e72483502f36cbedf872d3c9e4f16e6523ea1a
openstack-neutron-metering-agent-12.0.3-5.el7ost.noarch.rpm	SHA-256: 709d329d02373e5bc12ee9a34239da78525dcab7921fd385cc8f85de99d6ce8a
openstack-neutron-ml2-12.0.3-5.el7ost.noarch.rpm	SHA-256: a8d83d052ea9f6861027884a90888627f505f5185b64f153d122cd7df5934388
openstack-neutron-openvswitch-12.0.3-5.el7ost.noarch.rpm	SHA-256: 9402313a09ed17c9f1124c1cc8c122c90e67ee657656bf52d8ce1e5254a522f3
openstack-neutron-rpc-server-12.0.3-5.el7ost.noarch.rpm	SHA-256: 835df8f30e204e771b2a60993c3f2b8f314153203c05cc9a3198f1ad24fe37e6
openstack-neutron-sriov-nic-agent-12.0.3-5.el7ost.noarch.rpm	SHA-256: ccda341d65d814b5898816cda010ef4b19b320b8bcfa767724b0b08fd14a0f85
python-neutron-12.0.3-5.el7ost.noarch.rpm	SHA-256: 54ef3720e4378acd0b651368dd21d6f7588966aa325e3dfc45f63a296e1a3e6b

Red Hat OpenStack for IBM Power 13

SRPM
openstack-neutron-12.0.3-5.el7ost.src.rpm	SHA-256: b948a5e7edbcc8b38dacc0f1930d2835169b4adc8d253bda961c2a613c40fc54
ppc64le
openstack-neutron-12.0.3-5.el7ost.noarch.rpm	SHA-256: 9dc7c08b0d0e786c9d40e8fd15f06a61d1126efe108427ce882b6df6eac38c07
openstack-neutron-common-12.0.3-5.el7ost.noarch.rpm	SHA-256: f40563f357da0129aa244773edffa9ddf0d6045bcd6b55f6e6b52391501d0714
openstack-neutron-linuxbridge-12.0.3-5.el7ost.noarch.rpm	SHA-256: 99e3969e2e17dbf670668a67e759eeef0af1193c828d6b515fe944b030a8f1a1
openstack-neutron-macvtap-agent-12.0.3-5.el7ost.noarch.rpm	SHA-256: f543ac253aae70179989776140e72483502f36cbedf872d3c9e4f16e6523ea1a
openstack-neutron-metering-agent-12.0.3-5.el7ost.noarch.rpm	SHA-256: 709d329d02373e5bc12ee9a34239da78525dcab7921fd385cc8f85de99d6ce8a
openstack-neutron-ml2-12.0.3-5.el7ost.noarch.rpm	SHA-256: a8d83d052ea9f6861027884a90888627f505f5185b64f153d122cd7df5934388
openstack-neutron-openvswitch-12.0.3-5.el7ost.noarch.rpm	SHA-256: 9402313a09ed17c9f1124c1cc8c122c90e67ee657656bf52d8ce1e5254a522f3
openstack-neutron-rpc-server-12.0.3-5.el7ost.noarch.rpm	SHA-256: 835df8f30e204e771b2a60993c3f2b8f314153203c05cc9a3198f1ad24fe37e6
openstack-neutron-sriov-nic-agent-12.0.3-5.el7ost.noarch.rpm	SHA-256: ccda341d65d814b5898816cda010ef4b19b320b8bcfa767724b0b08fd14a0f85
python-neutron-12.0.3-5.el7ost.noarch.rpm	SHA-256: 54ef3720e4378acd0b651368dd21d6f7588966aa325e3dfc45f63a296e1a3e6b

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories