VulnerableCode Package Details - pkg:rpm/redhat/openstack-nova@1:20.6.2-2.20230308185148.fc01371?arch=el8ost

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/openstack-nova@1:20.6.2-2.20230308185148.fc01371?arch=el8ost

purl	pkg:rpm/redhat/openstack-nova@1:20.6.2-2.20230308185148.fc01371?arch=el8ost

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	1.9

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-m5vc-4my3-87gk Aliases: CVE-2022-37394 GHSA-v725-c588-h936	OpenStack Nova Changing vnic_type breaks compute service restart An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and 25.x before 25.0.2. By creating a neutron port with the direct vnic_type, creating an instance bound to that port, and then changing the vnic_type of the bound port to macvtap, an authenticated user may cause the compute service to fail to restart, resulting in a possible denial of service. Only Nova deployments configured with SR-IOV are affected.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:57:28.549683+00:00	RedHat Importer	Affected by	VCID-m5vc-4my3-87gk	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37394.json	38.0.0