ovn: ovn: Heap Over-Read in ICMP Error Response Generation - security issue

When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the ICMP error body using the IP header's self-declared total length iptotlen for IPv4, ip6plen for IPv6 without validating it against the actual packet buffer size...

UBUNTU-CVE-2015-8605

ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service application crash via an invalid length field in a UDP IPv4 packet...

PT-2017-6647 · Netkvm +1 · Netkvm Windows Virtio Driver +1

Name of the Vulnerable Software and Affected Versions: NetKVM Windows Virtio driver affected versions not specified Description: The issue allows remote attackers to cause a denial of service, resulting in a guest crash. This can be achieved by sending a crafted IP packet with a length value that...