openvswitch/ofp_print_target: Use-of-uninitialized-value in is_nd

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5740399507800064 Project: openvswitch Fuzzer: libFuzzeropenvswitchofpprinttarget Fuzz target binary: ofpprinttarget Job Type: libfuzzermsanopenvswitch Platform Id: linux Crash Type:...

openvswitch/flow_extract_target: Use-of-uninitialized-value in miniflow_map_init

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5706708475707392 Project: openvswitch Fuzzer: libFuzzeropenvswitchflowextracttarget Fuzz target binary: flowextracttarget Job Type: libfuzzermsanopenvswitch Platform Id: linux Crash Type:...

openvswitch/flow_extract_target: Use-of-uninitialized-value in is_nd

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5697050302218240 Project: openvswitch Fuzzer: libFuzzeropenvswitchflowextracttarget Fuzz target binary: flowextracttarget Job Type: libfuzzermsanopenvswitch Platform Id: linux Crash Type:...

openvswitch/ofp_print_fuzzer: Heap-use-after-free in ofpact_finish_CLONE

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5722747668791296 Project: openvswitch Fuzzer: libFuzzeropenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: libfuzzerasanopenvswitch Platform Id: linux Crash Type:...

openvswitch/ofp_print_fuzzer: Heap-double-free in ofputil_pull_ofp15_group_mod

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5677588436484096 Project: openvswitch Fuzzer: aflopenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: aflasanopenvswitch Platform Id: linux Crash Type: Heap-double-free Crash...

Photon OS 1.0: Bash / Curl / Mariadb / Openvswitch / Systemd PHSA-2017-0044 (deprecated)

An update of openvswitch,systemd,curl,mariadb,bash packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0044. The text itself is...

Photon OS 1.0: Openvswitch PHSA-2017-0020 (deprecated)

An update of openvswitch packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0020. The text itself is copyright C VMware, Inc...

openvswitch/ofp_print_fuzzer: Heap-buffer-overflow in parse_intel_port_custom_property

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5072291707748352 Project: openvswitch Fuzzer: aflopenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: aflasanopenvswitch Platform Id: linux Crash Type: Heap-buffer-overflow READ 1...

openvswitch/ofp_print_fuzzer: Heap-buffer-overflow in ofp_packet_to_string

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=6470117922701312 Project: openvswitch Fuzzer: libFuzzeropenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: libfuzzerasanopenvswitch Platform Id: linux Crash Type:...

openvswitch/flow_extract_fuzzer: Heap-buffer-overflow in parse_icmpv6

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5457710546944000 Project: openvswitch Fuzzer: libFuzzeropenvswitchflowextractfuzzer Fuzz target binary: flowextractfuzzer Job Type: libfuzzerasanopenvswitch Platform Id: linux Crash Type:...

openvswitch/ofp_print_fuzzer: Heap-buffer-overflow in get_be16

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5394482341085184 Project: openvswitch Fuzzer: libFuzzeropenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: libfuzzerasanopenvswitch Platform Id: linux Crash Type:...

openvswitch/ofp_print_fuzzer: Heap-buffer-overflow in decode_bundle

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=5147430386401280 Project: openvswitch Fuzzer: libFuzzeropenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: libfuzzerasanopenvswitch Platform Id: linux Crash Type:...

openvswitch/ofp_print_fuzzer: Heap-buffer-overflow in get_be16

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=6502620041576448 Project: openvswitch Fuzzer: libFuzzeropenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: libfuzzerasanopenvswitch Platform Id: linux Crash Type:...

openvswitch/ofp_print_fuzzer: Heap-buffer-overflow in get_unaligned_be32

Project: https://github.com/openvswitch/ovs.git Detailed report: https://oss-fuzz.com/testcase?key=4584019764183040 Project: openvswitch Fuzzer: libFuzzeropenvswitchofpprintfuzzer Fuzz target binary: ofpprintfuzzer Job Type: libfuzzerasanopenvswitch Platform Id: linux Crash Type:...

Security Bulletin: Vulnerabilities in OpenvSwitch affect PowerKVM

Summary PowerKVM is affected by vulnerabilities in OpenvSwitch. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2017-9265 DESCRIPTION: Open vSwitch is vulnerable to a buffer overflow, caused by improper bounds checking by the ofputilpullofp15groupmod function in...

Moderate: Red Hat Enhancement Advisory: openvswitch bug fix and enhancement update

Updated openvswitch packages that fix several bugs and add various enhancements are now available. The openvswitch package contains components for enabling Open vSwitch, a software-based Ethernet virtual switch. It also includes OVN Open Virtual Network components for supporting virtual network...

RHEL 7 : openvswitch (RHSA-2018:1267)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1267 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixe...

Moderate: Red Hat Security Advisory: openvswitch security and bug fix update

An update for openvswitch is now available for Fast Datapath for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

SUSE-SU-2018:0505-1 Security update for openvswitch

This update for openvswitch fixes the following issues: CVE-2017-9263: While parsing an OpenFlow role status message, there is a call to the abort functio for undefined role status reasons in the function ofpprintrolestatusmessage in lib/ofp-print.c that may be leveraged toward a remote DoS attac...

SUSE SLES12 Security Update : openvswitch (SUSE-SU-2018:0311-1)

This update for openvswitch fixes the following issues : - CVE-2017-9263: While parsing an OpenFlow role status message, there is a call to the abort functio for undefined role status reasons in the function ofpprintrolestatusmessage in lib/ofp-print.c that may be leveraged toward a remote DoS...