1690387 – CVE-2019-9735 openstack-neutron: incorrect validation of port settings in iptables security group driver (OSSA-2019-001) [openstack-10]

Bug 1690387 - CVE-2019-9735 openstack-neutron: incorrect validation of port settings in iptables security group driver (OSSA-2019-001) [openstack-10]

Summary: CVE-2019-9735 openstack-neutron: incorrect validation of port settings in ipt...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	openstack-neutron
Sub Component:
Version:	10.0 (Newton)
Hardware:	Unspecified
OS:	Unspecified
Priority:	urgent
Severity:	urgent
Target Milestone:	z11
Target Release:	10.0 (Newton)
Assignee:	Brian Haley
QA Contact:	Candido Campos
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1690402 CVE-2019-9735 1691342 1691350
TreeView+	depends on / blocked

Reported:	2019-03-19 11:49 UTC by Brian Haley
Modified:	2022-07-09 12:56 UTC (History)
CC List:	7 users (show)
Fixed In Version:	openstack-neutron-9.4.1-40.el7ost
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Clones:	1690402 1691342 1691350 (view as bug list)
Environment:
Last Closed:	2019-04-30 16:58:16 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Launchpad	1818385	None	None	None	2019-03-19 11:49:01 UTC
Red Hat Issue Tracker	OSP-17404	None	None	None	2022-07-09 12:56:43 UTC
Red Hat Product Errata	RHSA-2019:0916	None	None	None	2019-04-30 16:58:22 UTC

Description Brian Haley 2019-03-19 11:49:01 UTC

Cloned from launchpad bug 1818385.

Description:

This command should be invalid, but Neutron (Rocky) allows it to be created.
> openstack security group rule create xxx --protocol vrrp --ingress --remote-ip <ip> --dst-port 112

Since iptables does not allow dst-port being passed. It would trigger the following error on the compute and fail to apply any future iptable rules.
> unknown option "--dport"

Specification URL (additional information):

https://bugs.launchpad.net/neutron/+bug/1818385

Comment 2 Summer Long 2019-03-25 22:41:36 UTC

Adding this as a security tracker to the CVE flaw, 1690745.

Comment 3 Summer Long 2019-03-25 22:49:35 UTC

Changed the Summary syntax so that this can be recognized as a security bug.

Comment 14 errata-xmlrpc 2019-04-30 16:58:16 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2019:0916

Note You need to log in before you can comment on or make changes to this bug.