CVE-2014-0592 Information

Description

Barclamp (aka barclamp-network) 1.7 for the Crowbar Framework as used in SUSE Cloud 3 does not enable netfilter on bridges when creating new instances which allows remote attackers to bypass security group restrictions via unspecified vectors related to floating IPs.

Reference

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00025.html http://secunia.com/advisories/57509 http://www.securityfocus.com/bid/66519 https://bugzilla.novell.com/show_bug.cgi?id=864183 https://github.com/crowbar/barclamp-network/pull/269