Home CVE Database CVE-2017-9264

CVE-2017-9264

Description

In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS) 2.6.1, there is a buffer over-read while parsing malformed TCP, UDP, and IPv6 packets in the functions `extract_l3_ipv6`, `extract_l4_tcp`, and `extract_l4_udp` that can be triggered remotely.

Priority: HIGH
CVSS v3: 9.8
Publish Date: May 29, 2017
Related ID: --
CVSS v2: Critical
Modified Date: Jun 7, 2017

Find out more about CVE-2017-9264 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

openvswitch

Live chat
Online