neutron

  1. Bug #1489111
  2. Comment #21

Comment 21 for bug 1489111

Revision history for this message
Kevin Benton (kevinbenton) wrote : Re: IP, MAC, and DHCP spoofing rules can by bypassed by changing device_owner (CVE-2015-5240)

"All Neutron setups using the ML2 plugin or a plugin that relies on the security groups AMQP API"

Any plugins that have agents calling this method will be affected:
https://github.com/openstack/neutron/blob/4f802232771d051d0fe076e6458674a995c6bc14/neutron/api/rpc/handlers/securitygroups_rpc.py#L79-L84