CVE-2014-7821

Name of the Vulnerable Software and Affected Versions OpenStack Neutron versions prior to 2014.1.4 OpenStack Neutron versions 2014.2.x prior to 2014.2.1

Description The issue allows remote authenticated users to cause a denial of service, resulting in a crash. This can be achieved by providing a crafted dns nameservers value in the DNS configuration.

Recommendations For OpenStack Neutron versions prior to 2014.1.4, update to version 2014.1.4 or later. For OpenStack Neutron versions 2014.2.x prior to 2014.2.1, update to version 2014.2.1 or later.