798 matches found
DEBIAN-CVE-2016-2074
Buffer overflow in lib/flow.c in ovs-vswitchd in Open vSwitch 2.2.x and 2.3.x before 2.3.3 and 2.4.x before 2.4.1 allows remote attackers to execute arbitrary code via crafted MPLS packets, as demonstrated by a long string in an ovs-appctl command...
Buffer overflow
Buffer overflow in lib/flow.c in ovs-vswitchd in Open vSwitch 2.2.x and 2.3.x before 2.3.3 and 2.4.x before 2.4.1 allows remote attackers to execute arbitrary code via crafted MPLS packets, as demonstrated by a long string in an ovs-appctl command...
CVE-2016-2074
Open vSwitch: MPLS processing in ovs-vswitchd contains a buffer overflow in OpenFlow/MPLS label handling affecting Open vSwitch 2.2.x and 2.3.x before 2.3.3 and 2.4.x before 2.4.1. A remote attacker can exploit crafted MPLS packets to achieve arbitrary code execution or DoS. Upstream fixes are in...
FreeBSD : openvswitch -- MPLS buffer overflow (b53bbf58-257f-11e6-9f4d-20cf30e32f6d)
Open vSwitch reports : Multiple versions of Open vSwitch are vulnerable to remote buffer overflow attacks, in which crafted MPLS packets could overflow the buffer reserved for MPLS labels in an OVS internal data structure. The MPLS packets that trigger the vulnerability and the potential for...
openvswitch: MPLS buffer overflow vulnerability
A buffer overflow flaw was discovered in the OVS processing of MPLS labels. A remote attacker able to deliver a frame containing a malicious MPLS label that would be processed by OVS could trigger the flaw and use the resulting memory corruption to cause a denial of service DoS or, possibly,...
Important: Red Hat Security Advisory: openvswitch security update
An update for openvswitch is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...
Important: Red Hat Security Advisory: openvswitch security update
An update for openvswitch is now available for Red Hat Enterprise Linux OpenStack Platform 5.0 Icehouse for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...
openvswitch: MPLS buffer overflow vulnerability
A buffer overflow flaw was discovered in the OVS processing of MPLS labels. A remote attacker able to deliver a frame containing a malicious MPLS label that would be processed by OVS could trigger the flaw and use the resulting memory corruption to cause a denial of service DoS or, possibly,...
openvswitch: MPLS buffer overflow vulnerability
A buffer overflow flaw was discovered in the OVS processing of MPLS labels. A remote attacker able to deliver a frame containing a malicious MPLS label that would be processed by OVS could trigger the flaw and use the resulting memory corruption to cause a denial of service DoS or, possibly,...
Open vSwitch Buffer Overflow Vulnerability
Open vSwitch OVS is a multi-layer virtual switch product based on open source technology following the Apache 2.0 license, which supports large-scale network automation through programmatic extensions, standard management interfaces and protocols, and more. A buffer overflow vulnerability exists ...
CVE-2016-2074
Buffer overflow in lib/flow.c in ovs-vswitchd in Open vSwitch 2.2.x and 2.3.x before 2.3.3 and 2.4.x before 2.4.1 allows remote attackers to execute arbitrary code via crafted MPLS packets, as demonstrated by a long string in an ovs-appctl command...
openvswitch -- MPLS buffer overflow
Open vSwitch reports: Multiple versions of Open vSwitch are vulnerable to remote buffer overflow attacks, in which crafted MPLS packets could overflow the buffer reserved for MPLS labels in an OVS internal data structure. The MPLS packets that trigger the vulnerability and the potential for...
UBUNTU-CVE-2016-2074
Buffer overflow in lib/flow.c in ovs-vswitchd in Open vSwitch 2.2.x and 2.3.x before 2.3.3 and 2.4.x before 2.4.1 allows remote attackers to execute arbitrary code via crafted MPLS packets, as demonstrated by a long string in an ovs-appctl command...
Streamed VM Setup Wizard Fails to Create VMs When Specifying an ESX Datacenter as the Hypervisor
Streamed VM Setup Wizard fails to create VMs when specifying an ESX datacenter as the hypervisor. The wizard completes but reports 0 of 5 VMs created. A CDF trace during the failure will report an exception in PVSDllHypervisorPlatform - "the resource vim.dvs.DistributedVirtualPort is not...
Multiprotocol Network Emulator – Simulator: IMUNES
IMUNES GUI is a simple Tcl/Tk based management console, allowing for specification and management of virtual network topologies. The emulation execution engine itself operates within the operating system kernel. Univesity of Zagreb developed a realistic network topology emulation / simulation...
Moderate: Red Hat Bug Fix Advisory: Red Hat Enterprise Linux OpenStack Platform Bug Fix and Enhancement Advisory
Updated mariadb-galera, rabbitmq-server, openvswitch, openstack-selinux, openstack-trove, sos-plugins-openstack, and python-eventlet packages that resolve various issues are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 Icehouse for RHEL 7. Red Hat Enterprise Linux OpenStack...
Scientific Linux Security Update : kernel on SL7.x x86_64 (20150512)
A buffer overflow flaw was found in the way the Linux kernel's Intel AES-NI instructions optimized version of the RFC4106 GCM mode decryption functionality handled fragmented packets. A remote attacker could use this flaw to crash, or potentially escalate their privileges on, a system over a...
RHEL 7 : kernel (RHSA-2015:0987)
Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...
Neutron: security groups fail to block traffic properly due to packstack configuration
It was discovered that the nova.conf configuration generated by PackStack did not correctly set the libvirtvifdriver configuration option if the Open vSwitch OVS monolithic plug-in was not used. This could result in deployments defaulting to having the firewall disabled unless the nova...