CVE-2021-3905

Published: Aug 23, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. An attacker could use this flaw to potentially exhaust available memory by keeping sending packet fragments.

Vendor	Product	Versions
n/a	openvswitch (ovs)	affected `Fixed in v2.17.0`

Weaknesses (CWE)

CWE-401

References

https://bugzilla.redhat.com/show_bug.cgi?id=2019692

https://access.redhat.com/security/cve/CVE-2021-3905

https://ubuntu.com/security/CVE-2021-3905

https://github.com/openvswitch/ovs-issues/issues/226

https://github.com/openvswitch/ovs/commit/803ed12e31b0377c37d7aa8c94b3b92f2081e349

GLSA-202311-16

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-3905

Description

Affected Products

Weaknesses (CWE)

References