CVE-2014-3703 – Neutron: security groups fail to block traffic properly due to packstack configuration

https://notcve.org/view.php?id=CVE-2014-3703

22 Oct 2014 — OpenStack PackStack 2012.2.1, when the Open vSwitch (OVS) monolithic plug-in is not used, does not properly set the libvirt_vif_driver configuration option when generating the nova.conf configuration, which causes the firewall to be disabled and allows remote attackers to bypass intended access restrictions. OpenStack PackStack 2012.2.1, cuando el plugin monolítico Open vSwitch (OVS) no está utilizado, no establece correctamente la opción de la configuración libvirt_vif_driver cuando genera la configuración... • http://rhn.redhat.com/errata/RHSA-2014-1691.html • CWE-264: Permissions, Privileges, and Access Controls •