High severity8.2NVD Advisory· Published Jun 17, 2016· Updated Jun 17, 2026
CVE-2016-5362
CVE-2016-5362
Description
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
neutronPyPI | < 7.0.5 | 7.0.5 |
neutronPyPI | >= 8.0.0, < 8.1.1 | 8.1.1 |
Affected products
26- ghsa-coords25 versionspkg:pypi/neutronpkg:rpm/suse/openstack-ceilometer&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-ceilometer-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-cinder&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-cinder-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-dashboard&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-glance&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-glance-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-heat&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-heat-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-keystone&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-keystone-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-manila&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-manila-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-neutron&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-neutron-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-neutron-fwaas&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-neutron-fwaas-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-neutron-lbaas&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-neutron-lbaas-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-nova&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-nova-doc&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openstack-resource-agents&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/python-networking-cisco&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/python-openstackclient&distro=SUSE%20OpenStack%20Cloud%206
< 7.0.5+ 24 more
- (no CPE)range: < 7.0.5
- (no CPE)range: < 5.0.4~a0~dev6-6.1
- (no CPE)range: < 5.0.4~a0~dev6-6.2
- (no CPE)range: < 7.0.3~a0~dev2-7.1
- (no CPE)range: < 7.0.3~a0~dev2-7.1
- (no CPE)range: < 8.0.2~a0~dev34-8.1
- (no CPE)range: < 11.0.2~a0~dev13-7.1
- (no CPE)range: < 11.0.2~a0~dev13-7.1
- (no CPE)range: < 5.0.2~a0~dev93-9.1
- (no CPE)range: < 5.0.2~a0~dev93-9.3
- (no CPE)range: < 8.1.1~a0~dev13-3.1
- (no CPE)range: < 8.1.1~a0~dev13-3.2
- (no CPE)range: < 1.0.2~a0~dev11-9.1
- (no CPE)range: < 1.0.2~a0~dev11-9.2
- (no CPE)range: < 7.1.2~a0~dev29-10.1
- (no CPE)range: < 7.1.2~a0~dev29-10.1
- (no CPE)range: < 7.1.2~a0~dev1-6.1
- (no CPE)range: < 7.1.2~a0~dev1-6.1
- (no CPE)range: < 7.1.2~a0~dev1-6.1
- (no CPE)range: < 7.1.2~a0~dev1-6.1
- (no CPE)range: < 12.0.5~a0~dev2-7.1
- (no CPE)range: < 12.0.5~a0~dev2-7.1
- (no CPE)range: < 1.0+git.1467079370.4f2c49d-7.1
- (no CPE)range: < 2.1.1-6.1
- (no CPE)range: < 1.7.2-4.1
Patches
Vulnerability mechanics
References
14- www.openwall.com/lists/oss-security/2016/06/10/5nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2016/06/10/6nvdMailing ListThird Party AdvisoryWEB
- access.redhat.com/errata/RHSA-2016:1473nvdThird Party AdvisoryWEB
- access.redhat.com/errata/RHSA-2016:1474nvdThird Party AdvisoryWEB
- bugs.launchpad.net/neutron/+bug/1558658nvdThird Party AdvisoryWEB
- github.com/advisories/GHSA-qpwc-p365-pqrrghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-5362ghsaADVISORY
- review.openstack.orgnvdVendor Advisory
- review.openstack.orgnvdVendor Advisory
- review.openstack.orgnvdThird Party Advisory
- security.openstack.org/ossa/OSSA-2016-009.htmlnvdVendor AdvisoryWEB
- review.openstack.orgghsaWEB
- review.openstack.orgghsaWEB
- review.openstack.orgghsaWEB
News mentions
0No linked articles in our index yet.