{"url":"http://public2.vulnerablecode.io/api/packages/63222?format=json","purl":"pkg:pypi/neutron@2015.1.1","type":"pypi","namespace":"","name":"neutron","version":"2015.1.1","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43981?format=json","vulnerability_id":"VCID-n4sa-8h57-xkfu","summary":"Improper Input Validation\nA Denial-of-Service flaw was found in the OpenStack Networking (neutron) L2 agent when using the iptables firewall driver. By submitting an address pair that is rejected as invalid by the ipset tool (with zero prefix size), an authenticated attacker can cause the L2 agent to crash.","references":[{"reference_url":"http://lists.openstack.org/pipermail/openstack-announce/2015-June/000377.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.openstack.org/pipermail/openstack-announce/2015-June/000377.html"},{"reference_url":"http://rhn.redhat.com/errata/RHSA-2015-1680.html","reference_id":"","reference_type":"","scores":[],"url":"http://rhn.redhat.com/errata/RHSA-2015-1680.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1680","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1680"},{"reference_url":"https://bugs.launchpad.net/neutron/+bug/1461054","reference_id":"","reference_type":"","scores":[],"url":"https://bugs.launchpad.net/neutron/+bug/1461054"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1232284","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1232284"},{"reference_url":"https://git.openstack.org/cgit/openstack/neutron/commit/?id=9ff6138c47c95034ba845e9448ddffd147b51f38","reference_id":"","reference_type":"","scores":[],"url":"https://git.openstack.org/cgit/openstack/neutron/commit/?id=9ff6138c47c95034ba845e9448ddffd147b51f38"},{"reference_url":"https://web.archive.org/web/20200228084753/http://www.securityfocus.com/bid/75368","reference_id":"","reference_type":"","scores":[],"url":"https://web.archive.org/web/20200228084753/http://www.securityfocus.com/bid/75368"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2015-3221","reference_id":"CVE-2015-3221","reference_type":"","scores":[],"url":"https://access.redhat.com/security/cve/CVE-2015-3221"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2015-3221","reference_id":"CVE-2015-3221","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2015-3221"},{"reference_url":"https://github.com/advisories/GHSA-wf44-4mgj-rwvx","reference_id":"GHSA-wf44-4mgj-rwvx","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-wf44-4mgj-rwvx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/63221?format=json","purl":"pkg:pypi/neutron@2014.2.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/neutron@2014.2.4"},{"url":"http://public2.vulnerablecode.io/api/packages/63222?format=json","purl":"pkg:pypi/neutron@2015.1.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/neutron@2015.1.1"}],"aliases":["CVE-2015-3221","GHSA-wf44-4mgj-rwvx"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n4sa-8h57-xkfu"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/neutron@2015.1.1"}