Back to search
CVE-2017-9263
Published: May 29, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
In Open vSwitch (OvS) 2.7.0, while parsing an OpenFlow role status message, there is a call to the abort() function for undefined role status reasons in the function `ofp_print_role_status_message` in `lib/ofp-print.c` that may be leveraged toward a remote DoS attack by a malicious switch.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2017:2698
vendor-advisory
x_refsource_REDHAT
RHSA-2017:2727
vendor-advisory
x_refsource_REDHAT
RHSA-2017:2692
vendor-advisory
x_refsource_REDHAT
RHSA-2017:2553
vendor-advisory
x_refsource_REDHAT
RHSA-2017:2418
vendor-advisory
x_refsource_REDHAT
RHSA-2017:2648
vendor-advisory
x_refsource_REDHAT
RHSA-2017:2665
vendor-advisory
x_refsource_REDHAT
https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332966.html
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now