Kashyap Chamarthy <kchamart> reports:
It's possible for Neutron (OpenStack networking) users to pass arbitrary
config files via rootwrap[*] which allows privilege escalation
by letting user add more exec directories, change configurations of
commands using rootwrap, log more than what needs to be done, etc.
This issue was discovered by Kashyap Chamarthy of Red Hat.
This issue has been addressed in following products:
OpenStack 4 for RHEL 6
Via RHSA-2014:0516 https://rhn.redhat.com/errata/RHSA-2014-0516.html