In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS) 2.6.1, there is a buffer over-read while parsing malformed TCP, UDP, and IPv6 packets in the functions `extract_l3_ipv6`, `extract_l4_tcp`, and `extract_l4_udp` that can be triggered remotely.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-05-29T03:52:00

Updated: 2024-08-05T17:02:44.204Z

Reserved: 2017-05-28T00:00:00

Link: CVE-2017-9264

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-05-29T04:29:00.400

Modified: 2024-11-21T03:35:42.947

Link: CVE-2017-9264

cve-icon Redhat

Severity : Moderate

Publid Date: 2017-03-03T00:00:00Z

Links: CVE-2017-9264 - Bugzilla