CVE-2022-4338

Опубликовано: 10 янв. 2023

Источник: debian

EPSS Низкий

Описание

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

Пакет	Статус	Версия исправления	Релиз	Тип
openvswitch	fixed	3.1.0~git20221212.739bcf2-4		package

https://www.openwall.com/lists/oss-security/2022/12/20/2
https://mail.openvswitch.org/pipermail/ovs-dev/2022-December/400596.html
https://github.com/openvswitch/ovs/pull/405
Introduced by: https://github.com/openvswitch/ovs/commit/be53a5c447c3ed77ef2d4e1e09ea63de576b90e8 (v2.4.0)
Fixed by: https://github.com/openvswitch/ovs/commit/7490f281f09a8455c48e19b0cf1b99ab758ee4f4

EPSS

Процентиль: 66%

0.00517

Низкий

CVE-2022-4338

CVSS3: 9.8

ubuntu

больше 2 лет назад

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

CVE-2022-4338

CVSS3: 9.8

redhat

больше 2 лет назад

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

CVE-2022-4338

CVSS3: 9.8

nvd

больше 2 лет назад

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

CVE-2022-4338

CVSS3: 9.8

msrc

больше 2 лет назад

Описание отсутствует

GHSA-c3mc-r2x5-rwmf

CVSS3: 9.8

github

больше 2 лет назад

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

EPSS

Процентиль: 66%

0.00517

Низкий