2 matches found
DEBIAN-CVE-2016-10377
In Open vSwitch OvS 2.5.0, a malformed IP packet can cause the switch to read past the end of the packet buffer due to an unsigned integer underflow in lib/flow.c in the function miniflowextract, permitting remote bypass of the access control list enforced by the switch...
CVE-2016-10377
Open vSwitch (OvS) 2.5.0 is affected by CVE-2016-10377. The vulnerability lies in the lib/flow.c function miniflow_extract, where an unsigned integer underflow when processing a malformed IP packet can cause the switch to read past the end of the packet buffer. This permits remote bypass of the s...