UBUNTU-CVE-2019-10876

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2019-10876
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-10876.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2019-10876
Upstream
Published
2019-04-05T05:29:00Z
Modified
2026-04-14T08:58:54.063009Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes where those security groups are present, because of an Open vSwitch (OVS) firewall KeyError. All Neutron deployments utilizing neutron-openvswitch-agent are affected.

References

Affected packages

Ubuntu:18.04:LTS / neutron

Package

Name
neutron
Purl
pkg:deb/ubuntu/neutron@2:12.0.5-0ubuntu4?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:12.0.5-0ubuntu4

Affected versions

2:11.*
2:11.0.1-0ubuntu1
2:12.*
2:12.0.0~b1-0ubuntu1
2:12.0.0~b1-0ubuntu2
2:12.0.0~b2-0ubuntu1
2:12.0.0~b3-0ubuntu1
2:12.0.0~rc1-0ubuntu1
2:12.0.0~rc2-0ubuntu1
2:12.0.0-0ubuntu1
2:12.0.0-0ubuntu1.1
2:12.0.0-0ubuntu1.2
2:12.0.0-0ubuntu1.3
2:12.0.0-0ubuntu1.4
2:12.0.0-0ubuntu2
2:12.0.0-0ubuntu3
2:12.0.1-0ubuntu1
2:12.0.1-0ubuntu1.1
2:12.0.2-0ubuntu1
2:12.0.3-0ubuntu1
2:12.0.5-0ubuntu1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-common"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-dhcp-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-l3-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-linuxbridge-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-macvtap-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-metadata-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-metering-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-openvswitch-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-plugin-linuxbridge-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-plugin-ml2"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-plugin-openvswitch-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-plugin-sriov-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-server"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "neutron-sriov-agent"
        },
        {
            "binary_version": "2:12.0.5-0ubuntu4",
            "binary_name": "python-neutron"
        }
    ],
    "availability": "No subscription required"
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-10876.json"