Home CVE Database CVE-2017-9214

CVE-2017-9214

Description

In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function `ofputil_pull_queue_get_config_reply10` in `lib/ofp-util.c`.

Priority: HIGH
CVSS v3: 9.8
Publish Date: May 23, 2017
Related ID: --
CVSS v2: Critical
Modified Date: May 23, 2017

Find out more about CVE-2017-9214 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

openvswitch

Live chat
Online