An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and 25.x before 25.0.2. By creating a neutron port with the direct vnic_type, creating an instance bound to that port, and then changing the vnic_type of the bound port to macvtap, an authenticated user may cause the compute service to fail to restart, resulting in a possible denial of service. Only Nova deployments configured with SR-IOV are affected.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Nova | Openstack | * | 23.2.2 (excluding) |
| Nova | Openstack | 24.0.0 (including) | 24.1.2 (excluding) |
| Nova | Openstack | 25.0.0 (including) | 25.0.2 (excluding) |
| Red Hat OpenStack Platform 16.2 | RedHat | openstack-nova-1:20.6.2-2.20230308185148.fc01371.el8ost | * |
| Nova | Ubuntu | focal | * |
| Nova | Ubuntu | jammy | * |
| Nova | Ubuntu | trusty | * |
| Nova | Ubuntu | xenial | * |