Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2021/02/22 12:0 a.m.157 views

Debian DLA-2571-1 : openvswitch security update

Several issues have been found in openvswitch, a production quality, multilayer, software-based, Ethernet virtual switch. CVE-2020-35498 Denial of service attacks, in which crafted network packets could cause the packet lookup to ignore network header fields from layers 3 and 4. The crafted netwo...

9.8CVSS7.1AI score0.08026EPSS
Exploits0References9
Debian
Debian
added 2021/02/19 10:10 p.m.200 views

[SECURITY] [DLA 2571-1] openvswitch security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2571-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz February 19, 2021 https://wiki.debian.org/LTS -...

9.8CVSS8.6AI score0.08026EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.30 views

Photon OS 1.0: Openvswitch PHSA-2020-1.0-0288

An update of the openvswitch package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0288. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

4.9CVSS6.3AI score0.02046EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/01/31 12:0 a.m.93 views

Ubuntu 16.04 LTS / 18.04 LTS : Open vSwitch vulnerabilities (USN-3873-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3873-1 advisory. It was discovered that Open vSwitch incorrectly decoded certain packets. A remote attacker could possibly use this issue to cause Open vSwitc...

7.5CVSS6.3AI score0.02531EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2019/01/30 12:33 p.m.108 views

USN-3873-1: Open vSwitch vulnerabilities

It was discovered that Open vSwitch incorrectly decoded certain packets. A remote attacker could possibly use this issue to cause Open vSwitch to crash, resulting in a denial of service. CVE-2018-17204 It was discovered that Open vSwitch incorrectly handled processing certain flows. A remote...

7.5CVSS6.3AI score0.02531EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2019/01/16 5:53 p.m.112 views

Moderate: Red Hat Security Advisory: openvswitch security and bug fix update

An update for openvswitch is now available for Red Hat OpenStack Platform 13.0 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.7AI score0.02531EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2018/12/18 12:0 a.m.30 views

openSUSE: Security Advisory for openvswitch (openSUSE-SU-2018:4148-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.3AI score0.02531EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/12/18 12:0 a.m.27 views

openSUSE: Security Advisory for openvswitch (openSUSE-SU-2018:4148-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS5.3AI score0.02531EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/12/17 12:0 a.m.38 views

SUSE SLES12 Security Update : openvswitch (SUSE-SU-2018:4128-1)

This update for openvswitch to version 2.7.6 fixes the following issues : These security issues were fixed : CVE-2018-17205: Prevent OVS crash when reverting old flows in bundle commit bsc1104467. CVE-2018-17206: Avoid buffer overread in BUNDLE action decoding bsc1104467. CVE-2018-17204: When...

7.5CVSS6.2AI score0.02531EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2018/12/17 12:0 a.m.29 views

openSUSE Security Update : openvswitch (openSUSE-2018-1562)

This update for openvswitch to version 2.7.6 fixes the following issues : These security issues were fixed : - CVE-2018-17205: Prevent OVS crash when reverting old flows in bundle commit bsc1104467. - CVE-2018-17206: Avoid buffer overread in BUNDLE action decoding bsc1104467. - CVE-2018-17204:Whe...

7.5CVSS6.3AI score0.02531EPSS
Exploits1References4
OPENSUSE Linux
OPENSUSE Linux
added 2018/12/16 12:11 a.m.151 views

Security update for openvswitch (moderate)

This update for openvswitch to version 2.7.6 fixes the following issues: These security issues were fixed: - CVE-2018-17205: Prevent OVS crash when reverting old flows in bundle commit bsc1104467. - CVE-2018-17206: Avoid buffer overread in BUNDLE action decoding bsc1104467. - CVE-2018-17204:When...

0.1AI score0.02531EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2018/11/05 2:56 p.m.552 views

Moderate: Red Hat Security Advisory: openvswitch security, bug fix, and enhancement update

An update for openvswitch is now available for Fast Datapath for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02531EPSS
Exploits1References14
NVD
NVD
added 2018/09/19 4:29 p.m.17 views

CVE-2018-17204

An issue was discovered in Open vSwitch OvS 2.7.x through 2.7.6, affecting parsegrouppropntrselectionmethod in lib/ofp-util.c. When decoding a group mod, it validates the group type and command after the whole group mod has been decoded. The OF1.5 decoder, however, tries to use the type and comma...

4.3CVSS5AI score0.01911EPSS
Exploits0References6
CVE
CVE
added 2018/09/19 4:0 p.m.109 views

CVE-2018-17204

Open vSwitch (OVS) 2.7.x–2.7.6 is affected by CVE-2018-17204 due to a logic error in parse_group_prop_ntr_selection_method within lib/ofp-util.c. During decoding of a group mod, the code validates the group type/command only after the full group mod is parsed, but the OpenFlow 1.5 decoder may use...

4.3CVSS4.8AI score0.01911EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2018/09/19 4:0 p.m.32 views

CVE-2018-17204

An issue was discovered in Open vSwitch OvS 2.7.x through 2.7.6, affecting parsegrouppropntrselectionmethod in lib/ofp-util.c. When decoding a group mod, it validates the group type and command after the whole group mod has been decoded. The OF1.5 decoder, however, tries to use the type and comma...

4.3CVSS5.6AI score0.01911EPSS
Exploits0
Rows per page
Query Builder