openvswitch: Invalid processing of a malicious OpenFlow role status message

🗓️ 06 Sep 2017 17:49:41Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 2 Views

Open vSwitch aborts on invalid OpenFlow role status, enabling denial of service by malicious switch.

Reporter	Title	Published	Views	Family All 62
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenvSwitch affect PowerKVM	18 Jun 201801:38	–	ibm
CNVD	Open vSwitch Denial of Service Vulnerability	1 Jun 201700:00	–	cnvd
CVE	CVE-2017-9263	29 May 201703:52	–	cve
Cvelist	CVE-2017-9263	29 May 201703:52	–	cvelist
Debian CVE	CVE-2017-9263	29 May 201703:52	–	debiancve
EUVD	EUVD-2017-18199	7 Oct 202500:30	–	euvd
Fedora	[SECURITY] Fedora 26 Update: openvswitch-2.7.3-2.fc26	16 Oct 201717:58	–	fedora
Tenable Nessus	Fedora 26 : openvswitch (2017-45625fecca)	18 Oct 201700:00	–	nessus
Tenable Nessus	openSUSE Security Update : openvswitch (openSUSE-2017-973)	29 Aug 201700:00	–	nessus
Tenable Nessus	Photon OS 1.0: Cairo / Go / Libxml2 / Openvswitch PHSA-2017-0039 (deprecated)	17 Aug 201800:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	7	x86_64	openvswitch	0:2.4.1-2.git20160727.el7ost	openvswitch-0:2.4.1-2.git20160727.el7ost.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	openvswitch-debuginfo	0:2.4.1-2.git20160727.el7ost	openvswitch-debuginfo-0:2.4.1-2.git20160727.el7ost.x86_64.rpm
Red Hat Enterprise Linux	7	any	python-openvswitch	0:2.4.1-2.git20160727.el7ost.noarch	python-openvswitch-0:2.4.1-2.git20160727.el7ost.noarch.noarch.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2017-9263
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2017-9263
cve	www.cve.org/CVERecord

13 May 2026 01:09Current

5.8Medium risk

Vulners AI Score5.8

CVSS 23.3

CVSS 36.5

EPSS0.00126

Open vSwitch OpenFlow Role status Denial of service Malicious switch