400 matches found
Moderate: Red Hat Security Advisory: openvswitch security update
An update for openvswitch is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
openvswitch: Buffer over-read while parsing the group mod OpenFlow message
A buffer over-read issue was found in Open vSwitch OvS which emerged while parsing the GroupMod OpenFlow messages sent from the controller. The issue could enable an attacker to cause a denial of service type of attack...
openvswitch: Invalid processing of a malicious OpenFlow role status message
While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...
Moderate: Red Hat Security Advisory: openvswitch security update
An update for openvswitch is now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
openvswitch: Buffer over-read while parsing the group mod OpenFlow message
A buffer over-read issue was found in Open vSwitch OvS which emerged while parsing the GroupMod OpenFlow messages sent from the controller. The issue could enable an attacker to cause a denial of service type of attack...
openvswitch: Invalid processing of a malicious OpenFlow role status message
While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...
Moderate: Red Hat Security Advisory: openvswitch security and bug fix update
An update for openvswitch is now available for Red Hat OpenStack Platform 10.0 Newton. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
openvswitch: Buffer over-read while parsing the group mod OpenFlow message
A buffer over-read issue was found in Open vSwitch OvS which emerged while parsing the GroupMod OpenFlow messages sent from the controller. The issue could enable an attacker to cause a denial of service type of attack...
openvswitch: Invalid processing of a malicious OpenFlow role status message
While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...
Moderate: Red Hat Security Advisory: openvswitch security update
An update for openvswitch is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
openvswitch: Buffer over-read while parsing the group mod OpenFlow message
A buffer over-read issue was found in Open vSwitch OvS which emerged while parsing the GroupMod OpenFlow messages sent from the controller. The issue could enable an attacker to cause a denial of service type of attack...
openvswitch: Invalid processing of a malicious OpenFlow role status message
While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...
openSUSE Security Update : openvswitch (openSUSE-2017-973)
This update for openvswitch fixes the following issues : - CVE-2017-9263: OpenFlow role status message can cause a call to abort leading to application crash bsc1041470 - CVE-2017-9265: Buffer over-read while parsing message could lead to crash or maybe arbitrary code execution bsc1041447 - Do no...
SUSE SLES12 Security Update : openvswitch (SUSE-SU-2017:2212-1)
This update for openvswitch fixes the following issues : - CVE-2017-9263: OpenFlow role status message can cause a call to abort leading to application crash bsc1041470 - CVE-2017-9265: Buffer over-read while parsing message could lead to crash or maybe arbitrary code execution bsc1041447 - Do no...
NoviFlow NoviWare < NW400.2.6 - Multiple Vulnerabilities
NoviFlow NoviWare = NW400.2.6 multiple vulnerabilities Introduction ========== NoviWare is a high-performance OpenFlow 1.3, 1.4 and 1.5 compliant switch software developed by NoviFlow and available for license to network equipment manufacturers. Multiple vulnerabilities were identified in the...
openvswitch: Invalid processing of a malicious OpenFlow role status message
While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...
Moderate: Red Hat Security Advisory: openvswitch security, bug fix, and enhancement update
An update for openvswitch is now available for Fast Datapath for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
[SECURITY] Fedora 26 Update: openvswitch-2.7.0-5.fc26
Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...
Open vSwitch Denial of Service Vulnerability
Open vSwitch OvS is a multi-layer virtual switch product based on open source technology following the Apache 2.0 license that supports large-scale network automation through programmatic extensions, standard management interfaces and protocols, and more. A denial of service vulnerability exists ...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:1442-1)
Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...