Wind River Support Network

HomeDefectsLIN10-8253
Fixed

LIN10-8253 : Security Advisory - openvswitch - CVE-2020-35498

Created: Feb 19, 2021    Updated: Apr 1, 2021
Resolved Date: Apr 1, 2021
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.

CREATE(Triage):(User=admin) [CVE-2020-35498|https://nvd.nist.gov/vuln/detail/CVE-2020-35498]

CVEs


Live chat
Online