Lucene search

GoogleOSV:GHSA-FFP9-PFQ9-G2WW

HistoryMay 05, 2024 - 3:30 a.m.

Ryu Infinite Loop vulnerability

2024-05-0503:30:47

Google

osv.dev

ryu

infinite loop

vulnerability

ofpmultipartreply

parser

faucet sdn

denial of service

infinite loop

b.length=0

software

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

OFPMultipartReply in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service (infinite loop) via b.length=0.

CPENameOperatorVersion
ryueq3.12
ryueq4.6
ryueq4.2
ryueq4.33
ryueq4.2.1
ryueq3.7
ryueq3.20
ryueq3.25.1
ryueq3.5
ryueq1.8

Name	Operator	Version
ryu	eq	3.12
ryu	eq	4.6
ryu	eq	4.2
ryu	eq	4.33
ryu	eq	4.2.1
ryu	eq	3.7
ryu	eq	3.20
ryu	eq	3.25.1
ryu	eq	3.5
ryu	eq	1.8

Rows per page:

1-10 of 821

References

github.com/faucetsdn/ryu

github.com/faucetsdn/ryu/issues/191

nvd.nist.gov/vuln/detail/CVE-2024-34488