CVE-2015-3221
EPSS 14.3%OpenStack Neutron Improper Input Validation vulnerability
Published: 5/14/2022Modified: 4/28/2026
Description
OpenStack Neutron before 2014.2.4 (juno) and 2015.1.x before 2015.1.1 (kilo), when using the IPTables firewall driver, allows remote authenticated users to cause a denial of service (L2 agent crash) by adding an address pair that is rejected by the ipset tool.
Affected packages (2)
- Debian/neutronfrom 0, < 2015.1.0+2015.06.24.git61.bdf194a0e1-1
- PyPI/neutronfrom 0, < 2014.2.4
References (11)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2015-3221
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-3221
- PATCHhttps://opendev.org/openstack/neutron
- WEBhttp://lists.openstack.org/pipermail/openstack-announce/2015-June/000377.html
- WEBhttp://rhn.redhat.com/errata/RHSA-2015-1680.html
- WEBhttps://access.redhat.com/errata/RHSA-2015:1680
- WEBhttps://access.redhat.com/security/cve/CVE-2015-3221
- WEBhttps://bugs.launchpad.net/neutron/+bug/1461054
- WEBhttps://bugzilla.redhat.com/show_bug.cgi?id=1232284
- WEBhttps://git.openstack.org/cgit/openstack/neutron/commit/?id=9ff6138c47c95034ba845e9448ddffd147b51f38
- WEBhttps://web.archive.org/web/20200228084753/http://www.securityfocus.com/bid/75368