Back to search
CVE-2022-37394
Published: Aug 3, 2022
Modified: Aug 3, 2024
PUBLISHED
Description
An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and 25.x before 25.0.2. By creating a neutron port with the direct vnic_type, creating an instance bound to that port, and then changing the vnic_type of the bound port to macvtap, an authenticated user may cause the compute service to fail to restart, resulting in a possible denial of service. Only Nova deployments configured with SR-IOV are affected.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugs.launchpad.net/ossa/+bug/1981813
x_refsource_MISC
https://review.opendev.org/c/openstack/nova/+/849985
x_refsource_MISC
https://review.opendev.org/c/openstack/nova/+/850003
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now