Описание
A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Fast Datapath for RHEL 7 | ovn2.11 | Out of support scope | ||
| Fast Datapath for RHEL 7 | ovn2.12 | Out of support scope | ||
| Fast Datapath for RHEL 7 | ovn2.13 | Out of support scope | ||
| Fast Datapath for RHEL 8 | ovn2.11 | Out of support scope | ||
| Fast Datapath for RHEL 8 | ovn2.12 | Out of support scope | ||
| Fast Datapath for RHEL 8 | ovn2.13 | Out of support scope | ||
| Fast Datapath for RHEL 8 | ovn22.06 | Out of support scope | ||
| Fast Datapath for RHEL 8 | ovn22.09 | Out of support scope | ||
| Fast Datapath for RHEL 9 | ovn-2021 | Affected | ||
| Fast Datapath for RHEL 9 | ovn22.06 | Out of support scope |
Показывать по
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.
A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.
A flaw was found in the Open Virtual Network (OVN). In OVN clusters wh ...
A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.
Уязвимость программного многоуровневого коммутатора Open vSwitch, связанная с недостатком в механизме подтверждения источника, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.5 Medium
CVSS3