Bugzilla – Bug 1202130
VUL-0: CVE-2022-37394: openstack-nova: denial of service related to creating a neutron port with the direct vnic_type
Last modified: 2022-10-31 11:04:48 UTC
An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and
25.x before 25.0.2. By creating a neutron port with the direct vnic_type,
creating an instance bound to that port, and then changing the vnic_type of the
bound port to macvtap, an authenticated user may cause the compute service to
fail to restart, resulting in a possible denial of service. Only Nova
deployments configured with SR-IOV are affected.
tracking as affected:
Customers using Nova do not use SR-IOV, closing as WONTFIX.