I wonder whether the bug should have been handled by vulnerability team. It looks like a privilege escalation problem.
** Also affects: ossa Importance: Undecided Status: New -- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to neutron. https://bugs.launchpad.net/bugs/1365727 Title: N1kv tenant able to create networks for non-shared network profiles of other N1kv tenants Status in OpenStack Neutron (virtual network service): Fix Released Status in OpenStack Security Advisories: New Bug description: Tenants are able to create networks within network profiles that are not shared with them and belong to some other tenant. To manage notifications about this bug go to: https://bugs.launchpad.net/neutron/+bug/1365727/+subscriptions -- Mailing list: https://launchpad.net/~yahoo-eng-team Post to : yahoo-eng-team@lists.launchpad.net Unsubscribe : https://launchpad.net/~yahoo-eng-team More help : https://help.launchpad.net/ListHelp