In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS) 2.6.1, there is a buffer over-read while parsing malformed TCP, UDP, and IPv6 packets in the functions `extract_l3_ipv6`, `extract_l4_tcp`, and `extract_l4_udp` that can be triggered remotely.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-05-29T03:52:00
Updated: 2024-08-05T17:02:44.204Z
Reserved: 2017-05-28T00:00:00
Link: CVE-2017-9264
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-05-29T04:29:00.400
Modified: 2024-11-21T03:35:42.947
Link: CVE-2017-9264
Redhat