Comment 1 for bug 1575328

This is likely an Class B2 type bug [1], based on bad architecture. Likely this needs an OSSN, which is published shortly after the bug is made public. I expect this bug will not remain private too terribly long.

[1] https://security.openstack.org/vmt-process.html#incident-report-taxonomy