Showing 1 - 4 of 4

CVE-2018-17204

Status Candidate

Overview

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parse_group_prop_ntr_selection_method in lib/ofp-util.c. When decoding a group mod, it validates the group type and command after the whole group mod has been decoded. The OF1.5 decoder, however, tries to use the type and command earlier, when it might still be invalid. This causes an assertion failure (via OVS_NOT_REACHED). ovs-vswitchd does not enable support for OpenFlow 1.5 by default.

Related Files

Ubuntu Security Notice USN-3873-1: Posted Jan 30, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3873-1 - It was discovered that Open vSwitch incorrectly decoded certain packets. A remote attacker could possibly use this issue to cause Open vSwitch to crash, resulting in a denial of service. It was discovered that Open vSwitch incorrectly handled processing certain flows. A remote attacker could possibly use this issue to cause Open vSwitch to crash, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS. Various other issues were also addressed.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2018-17204, CVE-2018-17205, CVE-2018-17206; SHA-256 | 908ced99153ecc61b1eb36e454bae54f8f456af9c212d3462a5914e555707a01; Download | Favorite | View

Red Hat Security Advisory 2019-0081-01: Posted Jan 17, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-0081-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include buffer over-read and assertion failure vulnerabilities.; tags | advisory, remote, vulnerability, protocol; systems | linux, redhat; advisories | CVE-2018-17204, CVE-2018-17205, CVE-2018-17206; SHA-256 | f75b0d16e83426e9dfc3323902017e37f639d875944ce19bbc8e7ecaac16033f; Download | Favorite | View

Red Hat Security Advisory 2019-0053-01: Posted Jan 17, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-0053-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include buffer over-read and assertion failure vulnerabilities.; tags | advisory, remote, vulnerability, protocol; systems | linux, redhat; advisories | CVE-2018-17204, CVE-2018-17205, CVE-2018-17206; SHA-256 | 5193edbbd2de71dc0adc69dac65b2b29d569de7e24504569e1e84b574da00c84; Download | Favorite | View

Red Hat Security Advisory 2018-3500-01: Posted Nov 5, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3500-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include a buffer over-read vulnerability.; tags | advisory, remote, protocol; systems | linux, redhat; advisories | CVE-2018-17204, CVE-2018-17205, CVE-2018-17206; SHA-256 | 0d5f60c494cc3604270bf4eaaf205f10c2b734964f2470dcd3070fb4057fce86; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 247 files
Jay Turla 150 files
indoushka 139 files
Ubuntu 61 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (429)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,117)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (880)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,066)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,731)
Slackware (941)
Solaris (1,614)
SUSE (1,444)
Ubuntu (9,807)
UNIX (9,449)
UnixWare (187)
Windows (6,762)
Other

CVE-2018-17204

Overview

Related Files

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems