Issued:: 2021-09-13
Updated:: 2021-09-13

RHSA-2021:3502 - Security Advisory

Overview
Updated Packages

Synopsis

Important: Red Hat OpenStack Platform 10.0 (openstack-neutron) security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for openstack-neutron is now available for Red Hat OpenStack
Platform 10 (Newton).

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

Description

Neutron is a virtual network service for OpenStack. Just like OpenStack
Nova provides an API to dynamically request and configure virtual
servers, Neutron provides an API to dynamically request and configure
virtual networks. These networks connect "interfaces" from other
OpenStack services (e.g., virtual NICs from Nova VMs). The Neutron
API supports extensions to provide advanced network capabilities
(e.g., QoS, ACLs, network, monitoring, etc.).

Security Fix(es):

arbitrary dnsmasq reconfiguration via extra_dhcp_opts (CVE-2021-40085)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.

Solution

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat OpenStack 10 x86_64

Fixes

BZ - 1998052 - CVE-2021-40085 openstack-neutron: arbitrary dnsmasq reconfiguration via extra_dhcp_opts

CVEs

CVE-2021-40085

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat OpenStack 10

SRPM
openstack-neutron-9.4.1-56.el7ost.src.rpm	SHA-256: ff49d23d81f5ac3d2647dd530b04f32463abbfcf34a0ce7d474e4065c41841c1
x86_64
openstack-neutron-9.4.1-56.el7ost.noarch.rpm	SHA-256: 6d3c74151d96145f314ae281560b82f63adef452d30d147a8e388c3305b2d95d
openstack-neutron-common-9.4.1-56.el7ost.noarch.rpm	SHA-256: 816c5209589a26eb965e80d82221680aa901f7d0ec0c8599d6940a2c02f630d1
openstack-neutron-linuxbridge-9.4.1-56.el7ost.noarch.rpm	SHA-256: 3ce447d8edb0874a8d9394520072b2ebc501d0e53a18d4d084d40977f3365d5f
openstack-neutron-macvtap-agent-9.4.1-56.el7ost.noarch.rpm	SHA-256: 3c00dd1574bd3e595c8462472c99704067ccba9f9dcf47fc330e6624bfa04c8a
openstack-neutron-metering-agent-9.4.1-56.el7ost.noarch.rpm	SHA-256: f30db89b44feeb49151560f80a62edd38d84e8e8c2f9edb0256bc3446810ee11
openstack-neutron-ml2-9.4.1-56.el7ost.noarch.rpm	SHA-256: 1ff5f075fea8df1d691563827c63e3b8b41d688156b361d55041c0a9e7c2e4de
openstack-neutron-openvswitch-9.4.1-56.el7ost.noarch.rpm	SHA-256: 135a0353f49f75e9f9e242618ea1def9a619eba21c922026e191798b4deb2303
openstack-neutron-rpc-server-9.4.1-56.el7ost.noarch.rpm	SHA-256: a825a4c3372590ceba7353347a2cc40460a2e89442d44f00b4bb595dc12eec51
openstack-neutron-sriov-nic-agent-9.4.1-56.el7ost.noarch.rpm	SHA-256: 551305687b8c3f829185676f9cb5d29b646b6266dd1556836971c40ed3d02947
python-neutron-9.4.1-56.el7ost.noarch.rpm	SHA-256: 46cfab7fff1534506cf38669cc9d107c4b3d5d0397cd6b0902b5d95eff64fb49
python-neutron-tests-9.4.1-56.el7ost.noarch.rpm	SHA-256: 71332a8bb08a1a866e853c707d4eeffc9d8ed28a1acd5c0b262b3d4fecabf2bf

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation