1. CVE-Search
  2. CVE-2017-9214
ID CVE-2017-9214
Summary In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function `ofputil_pull_queue_get_config_reply10` in `lib/ofp-util.c`.
References
Vulnerable Configurations
  • cpe:2.3:a:openvswitch:openvswitch:2.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:openvswitch:openvswitch:2.7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:virtualization:4.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:virtualization:4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:virtualization_manager:4.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:virtualization_manager:4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 04-08-2021 - 17:15)
Impact:
Exploitability:
CWE CWE-191
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
redhat via4
advisories
  • rhsa
    id RHSA-2017:2418
  • rhsa
    id RHSA-2017:2553
  • rhsa
    id RHSA-2017:2648
  • rhsa
    id RHSA-2017:2665
  • rhsa
    id RHSA-2017:2692
  • rhsa
    id RHSA-2017:2698
  • rhsa
    id RHSA-2017:2727
rpms
  • openvswitch-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-debuginfo-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-devel-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-ovn-central-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-ovn-common-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-ovn-docker-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-ovn-host-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-ovn-vtep-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-test-0:2.7.2-1.git20170719.el7fdp
  • python-openvswitch-0:2.7.2-1.git20170719.el7fdp
  • openvswitch-0:2.5.0-15.git20160727.el7ost
  • openvswitch-debuginfo-0:2.5.0-15.git20160727.el7ost
  • python-openvswitch-0:2.5.0-15.git20160727.el7ost
  • openvswitch-0:2.6.1-13.git20161206.el7ost
  • openvswitch-debuginfo-0:2.6.1-13.git20161206.el7ost
  • python-openvswitch-0:2.6.1-13.git20161206.el7ost
  • openvswitch-0:2.4.1-2.git20160727.el7ost
  • openvswitch-debuginfo-0:2.4.1-2.git20160727.el7ost
  • python-openvswitch-0:2.4.1-2.git20160727.el7ost
  • openvswitch-0:2.5.0-15.git20160727.el7ost
  • openvswitch-debuginfo-0:2.5.0-15.git20160727.el7ost
  • python-openvswitch-0:2.5.0-15.git20160727.el7ost
  • openvswitch-0:2.5.0-15.git20160727.el7ost
  • openvswitch-debuginfo-0:2.5.0-15.git20160727.el7ost
  • python-openvswitch-0:2.5.0-15.git20160727.el7ost
  • openvswitch-0:2.6.1-13.git20161206.el7ost
  • openvswitch-debuginfo-0:2.6.1-13.git20161206.el7ost
  • openvswitch-ovn-central-0:2.6.1-13.git20161206.el7ost
  • openvswitch-ovn-common-0:2.6.1-13.git20161206.el7ost
  • openvswitch-ovn-docker-0:2.6.1-13.git20161206.el7ost
  • openvswitch-ovn-host-0:2.6.1-13.git20161206.el7ost
  • openvswitch-ovn-vtep-0:2.6.1-13.git20161206.el7ost
  • python-openvswitch-0:2.6.1-13.git20161206.el7ost
refmap via4
confirm https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332711.html
Last major update 04-08-2021 - 17:15
Published 23-05-2017 - 17:29
Last modified 04-08-2021 - 17:15
Back to Top