QwikSec

Security Database

CVE

CWE

Training

CVE-2019-15753

Published: Aug 28, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

In OpenStack os-vif 1.15.x before 1.15.2, and 1.16.0, a hard-coded MAC aging time of 0 disables MAC learning in linuxbridge, forcing obligatory Ethernet flooding of non-local destinations, which both impedes network performance and allows users to possibly view the content of packets for instances belonging to other tenants sharing the same network. Only deployments using the linuxbridge backend are affected. This occurs in PyRoute2.add() in internal/command/ip/linux/impl_pyroute2.py.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://launchpad.net/bugs/1837252

x_refsource_MISC

https://review.opendev.org/672834

x_refsource_MISC

https://review.opendev.org/678098

x_refsource_MISC

https://security.openstack.org/ossa/OSSA-2019-004.html

x_refsource_CONFIRM

[oss-security] 20190829 [OSSA-2019-004] Ageing time of 0 disables linuxbridge MAC learning (CVE-2019-15753)

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.