CVE-2014-4167
OpenStack Neutron <2013.2.4, 2014.x <2014.1.2, Juno-2 - DoS
Title source: llmDescription
The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service (IPv4 address attachment outage) by attaching an IPv6 private subnet to a L3 router.
References (4)
Core 4
Core References
Issue Tracking, Vendor Advisory x_refsource_confirm
https://bugs.launchpad.net/neutron/+bug/1309195
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://seclists.org/oss-sec/2014/q2/572
Permissions Required third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59533
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2255-1
Scores
EPSS
0.0062
EPSS Percentile
70.4%
Details
CWE
CWE-264
Status
published
Products (5)
canonical/ubuntu_linux
13.10
canonical/ubuntu_linux
14.04
openstack/neutron
2014.1
openstack/neutron
2014.1.1
openstack/neutron
2011.1 - 2013.2.3
Published
Jul 11, 2014
Tracked Since
Feb 18, 2026