CVE-2017-9264

2017-05-29T04:29:00
ID CVE-2017-9264
Type cve
Reporter cve@mitre.org
Modified 2019-10-03T00:03:00

Description

In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS) 2.6.1, there is a buffer over-read while parsing malformed TCP, UDP, and IPv6 packets in the functions extract_l3_ipv6, extract_l4_tcp, and extract_l4_udp that can be triggered remotely.