16 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-32166
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of minimasks function could lead access to an...
SUSE: Security Advisory (SUSE-SU-2023:2259-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: libdpdk-18_11 / libopenvswitch-2_11-0 / openvswitch-ovn-central / etc (SUSE-SU-2023:1795-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:1795-1 advisory. - CVE-2021-36980: Fixed a use-after-free issue during the decoding of a RAWENCAP action...
SUSE-SU-2023:1795-1 Security update for openvswitch
This update for openvswitch fixes the following issues: - CVE-2021-36980: Fixed a use-after-free issue during the decoding of a RAWENCAP action bsc1188524. - CVE-2022-32166: Fixed a out of bounds read in minimaskequal bsc1203865...
SUSE SLES12 Security Update : openvswitch (SUSE-SU-2022:4050-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4050-1 advisory. - CVE-2022-32166: Fixed out of bounds read in minimaskequal bsc1203865. Tenable has extracted the preceding description block directly from...
SUSE: Security Advisory (SUSE-SU-2022:4050-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:4050-1 Security update for openvswitch
This update for openvswitch fixes the following issues: - CVE-2022-32166: Fixed out of bounds read in minimaskequal bsc1203865...
Debian: Security Advisory (DLA-3168-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3168 : openvswitch-common - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3168 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3168-1 [email protected] https://www.debian.org/lts/security/...
Ubuntu 16.04 ESM : Open vSwitch vulnerability (USN-5698-2)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5698-2 advisory. USN-5698-1 fixed a vulnerability in Open. This update provides the corresponding update for Ubuntu 16.04 ESM. Tenable has extracted the preceding description bloc...
Ubuntu 18.04 LTS : Open vSwitch vulnerability (USN-5698-1)
The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5698-1 advisory. It was discovered that Open vSwitch incorrectly handled comparison of certain minimasks. A remote attacker could use this issue to cause Open vSwitch to crash,...
DEBIAN-CVE-2022-32166
In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of “minimasks” function could lead access to an unmapped region of memory. This vulnerability is capable of crashing the software, memory modification, and possible remote execution...
CVE-2022-32166
In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of “minimasks” function could lead access to an unmapped region of memory. This vulnerability is capable of crashing the software, memory modification, and possible remote execution...
CVE-2022-32166
Open vSwitch (Openvswitch) is affected by CVE-2022-32166 for versions v0.90.0 through v2.5.0, due to a heap/buffer over-read in flow.c caused by an unsafe minimasks comparison. The vulnerability can crash the software, enable memory modification, and may allow remote execution. Public documents i...
CVE-2022-32166 ovs - buffer over-read
In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of “minimasks” function could lead access to an unmapped region of memory. This vulnerability is capable of crashing the software, memory modification, and possible remote execution...
CVE-2022-32166 ovs - buffer over-read
In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of “minimasks” function could lead access to an unmapped region of memory. This vulnerability is capable of crashing the software, memory modification, and possible remote execution...