Denial Of Service (DoS)

2019-05-0206:36:30

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Open vSwitch (OvS) is vulnerable to denial of service attacks. A buffer over-read while parsing malformed TCP, UDP, and IPv6 packets allow remote attackers to cause denial of service conditions. This vulnerability affects the function extract_l3_ipv6/extract_l4_tcp/extract_l4_udp in the library lib/conntrack.c of the component Firewall.

CPENameOperatorVersion
openvswitcheq2.4.0__2.el7_2
openvswitcheq2.0.0__7.el7
openvswitcheq2.6.1__3.git20161206.el7fdb
openvswitcheq2.1.2__2.el7_0.1
openvswitcheq2.4.0__2.el7
openvswitcheq2.7.0__8.git20170530.el7fdb
openvswitcheq2.4.0__1.el7
openvswitcheq2.4.1__1.git20160628.el7fdp
openvswitcheq2.5.0__5.git20160628.el7fdb
openvswitcheq2.6.1__4.1.git20161206.el7

Name	Operator	Version
openvswitch	eq	2.4.0__2.el7_2
openvswitch	eq	2.0.0__7.el7
openvswitch	eq	2.6.1__3.git20161206.el7fdb
openvswitch	eq	2.1.2__2.el7_0.1
openvswitch	eq	2.4.0__2.el7
openvswitch	eq	2.7.0__8.git20170530.el7fdb
openvswitch	eq	2.4.0__1.el7
openvswitch	eq	2.4.1__1.git20160628.el7fdp
openvswitch	eq	2.5.0__5.git20160628.el7fdb
openvswitch	eq	2.6.1__4.1.git20161206.el7