Wind River Support Network

HomeDefectsLIN1018-7265
Fixed

LIN1018-7265 : Security Advisory - openvswitch - CVE-2020-35498

Created: Feb 19, 2021    Updated: Mar 30, 2021
Resolved Date: Mar 23, 2021
Found In Version: 10.18.44.1
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.

CREATE(Triage):(User=admin) [CVE-2020-35498|https://nvd.nist.gov/vuln/detail/CVE-2020-35498]

CVEs


Live chat
Online