Bugzilla – Bug 1066198
VUL-0: CVE-2017-16239: openstack-nova: Filter Scheduler bypass through rebuild action
Last modified: 2020-04-28 15:47:14 UTC
issue is public now.
OSSA-2017-005: Nova Filter Scheduler bypass through rebuild action
Date: November 14, 2017
Nova: <=14.0.9, >=15.0.0 <=15.0.7, >=16.0.0 <=16.0.2
George Shuklin from servers.com reported a vulnerability in Nova. By rebuilding an instance, an authenticated user may be able to circumvent the Filter Scheduler bypassing imposed filters (for example, the ImagePropertiesFilter or the IsolatedHostsFilter). All setups using Nova Filter Scheduler are affected.
George Shuklin from Servers.com (CVE-2017-16239)
From: Tristan Cacqueray
The final patches for stable/newton and stable/ocata have been slightly
modified to accommodate a recent refactor:
due to https://bugs.launchpad.net/nova/+bug/1702454
Please find the correct versions here:
queens (master): https://review.openstack.org/519662
SUSE-SU-2017:3080-1: An update that fixes one vulnerability is now available.
Category: security (moderate)
Bug References: 1066198
CVE References: CVE-2017-16239
SUSE OpenStack Cloud 7 (src): openstack-nova-14.0.10~dev13-4.11.1, openstack-nova-doc-14.0.10~dev13-4.11.3
I am not sure the process. I will send it back to the SWAT backlog.
Fixed in https://build.opensuse.org/request/show/569718
@Rick: The fixes are in for SOC6:
https://build.opensuse.org/request/show/569718 which already landed in Devel:Cloud:6. Can you trigger the update? Thanks!
Reopened - bug needs to be closed by the security team.
Update got submitted, reassigning to security.