An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. Authenticated attackers can reconfigure dnsmasq via a crafted extradhcpopts value.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "neutron-plugin-linuxbridge-agent": "2:12.1.1-0ubuntu8.1", "neutron-macvtap-agent": "2:12.1.1-0ubuntu8.1", "neutron-common": "2:12.1.1-0ubuntu8.1", "neutron-metering-agent": "2:12.1.1-0ubuntu8.1", "neutron-openvswitch-agent": "2:12.1.1-0ubuntu8.1", "neutron-linuxbridge-agent": "2:12.1.1-0ubuntu8.1", "neutron-l3-agent": "2:12.1.1-0ubuntu8.1", "neutron-plugin-sriov-agent": "2:12.1.1-0ubuntu8.1", "neutron-dhcp-agent": "2:12.1.1-0ubuntu8.1", "python-neutron": "2:12.1.1-0ubuntu8.1", "neutron-plugin-openvswitch-agent": "2:12.1.1-0ubuntu8.1", "neutron-server": "2:12.1.1-0ubuntu8.1", "neutron-sriov-agent": "2:12.1.1-0ubuntu8.1", "neutron-metadata-agent": "2:12.1.1-0ubuntu8.1", "neutron-plugin-ml2": "2:12.1.1-0ubuntu8.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "python3-neutron": "2:16.4.2-0ubuntu6.2", "neutron-metadata-agent": "2:16.4.2-0ubuntu6.2", "neutron-linuxbridge-agent": "2:16.4.2-0ubuntu6.2", "neutron-l3-agent": "2:16.4.2-0ubuntu6.2", "neutron-macvtap-agent": "2:16.4.2-0ubuntu6.2", "neutron-ovn-metadata-agent": "2:16.4.2-0ubuntu6.2", "neutron-dhcp-agent": "2:16.4.2-0ubuntu6.2", "neutron-server": "2:16.4.2-0ubuntu6.2", "neutron-common": "2:16.4.2-0ubuntu6.2", "neutron-sriov-agent": "2:16.4.2-0ubuntu6.2", "neutron-metering-agent": "2:16.4.2-0ubuntu6.2", "neutron-openvswitch-agent": "2:16.4.2-0ubuntu6.2", "neutron-plugin-ml2": "2:16.4.2-0ubuntu6.2" } ] }