Описание
A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.
Отчет
Red Hat OpenStack Platform 13's openvswitch package will receive it's fixes from Fast Datapath.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Fast Datapath for RHEL 7 | openvswitch2.10 | Out of support scope | ||
| Fast Datapath for RHEL 7 | openvswitch2.12 | Out of support scope | ||
| Fast Datapath for RHEL 8 | openvswitch2.12 | Out of support scope | ||
| Red Hat OpenShift Container Platform 4 | openvswitch2.13 | Will not fix | ||
| Red Hat OpenShift Container Platform 4 | openvswitch2.15 | Not affected | ||
| Red Hat OpenStack Platform 10 (Newton) | openvswitch | Out of support scope | ||
| Red Hat OpenStack Platform 13 (Queens) | openvswitch | Out of support scope | ||
| Fast Datapath for Red Hat Enterprise Linux 7 | openvswitch2.11 | Fixed | RHSA-2021:0834 | 15.03.2021 |
| Fast Datapath for Red Hat Enterprise Linux 7 | openvswitch2.13 | Fixed | RHSA-2021:0835 | 15.03.2021 |
| Fast Datapath for Red Hat Enterprise Linux 7 | openvswitch | Fixed | RHSA-2021:2077 | 20.05.2021 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.
A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.
A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet parsing can allow a malicious user to send a specially crafted packet causing the resulting megaflow in the kernel to be too wide potentially causing a denial of service. The highest threat from this vulnerability is to system availability.
A vulnerability was found in openvswitch. A limitation in the implemen ...
EPSS
7.5 High
CVSS3