OpenStack Nova-LXD before 13.1.1 uses the wrong name for the veth pairs when applying Neutron security group rules for instances, which allows remote attackers to bypass intended security restrictions.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "13.2.0-0ubuntu1.16.04.1", "binary_name": "nova-compute-lxd" }, { "binary_version": "13.2.0-0ubuntu1.16.04.1", "binary_name": "python-nova-lxd" }, { "binary_version": "13.2.0-0ubuntu1.16.04.1", "binary_name": "python-nova.lxd" } ] }