SUSE SLES12 Security Update : openvswitch (SUSE-SU-2022:4050-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4050-1 advisory. - In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of minimasks function could...

PT-2022-21128 · Ovs +3 · Ovs +3

Name of the Vulnerable Software and Affected Versions: ovs versions v0.90.0 through v2.5.0 Description: The issue is related to a heap buffer over-read in flow.c, caused by an unsafe comparison in the minimasks function. This could lead to access to an unmapped region of memory, resulting in...