Bug 1202130 - (CVE-2022-37394) VUL-0: CVE-2022-37394: openstack-nova: denial of service related to creating a neutron port with the direct vnic_type
(CVE-2022-37394)
VUL-0: CVE-2022-37394: openstack-nova: denial of service related to creating ...
Status: RESOLVED WONTFIX
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Major
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/338834/
CVSSv3.1:SUSE:CVE-2022-37394:7.5:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-08-04 07:12 UTC by Robert Frohl
Modified: 2022-10-31 11:04 UTC (History)
7 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Robert Frohl 2022-08-04 07:12:34 UTC
CVE-2022-37394

An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and
25.x before 25.0.2. By creating a neutron port with the direct vnic_type,
creating an instance bound to that port, and then changing the vnic_type of the
bound port to macvtap, an authenticated user may cause the compute service to
fail to restart, resulting in a possible denial of service. Only Nova
deployments configured with SR-IOV are affected.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-37394
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37394
https://review.opendev.org/c/openstack/nova/+/850003
https://review.opendev.org/c/openstack/nova/+/849985
https://bugs.launchpad.net/ossa/+bug/1981813
Comment 1 Robert Frohl 2022-08-04 07:27:27 UTC
tracking as affected:

- SUSE:SLE-12-SP3:Update:Products:Cloud8:Update/openstack-nova
- SUSE:SLE-12-SP4:Update:Products:Cloud9:Update/openstack-nova
Comment 8 Carlos López 2022-10-31 11:04:48 UTC
Customers using Nova do not use SR-IOV, closing as WONTFIX.