Total vulnerabilities in the database
In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function ofputil_pull_queue_get_config_reply10 in lib/ofp-util.c.
| Software | From | Fixed in |
|---|---|---|
| openvswitch / openvswitch | 2.7.0 | 2.7.0.x |
| debian / debian_linux | 9.0 | 9.0.x |
| redhat / openstack | 7.0 | 7.0.x |
| redhat / openstack | 6.0 | 6.0.x |
| redhat / virtualization_manager | 4.1 | 4.1.x |
| redhat / virtualization | 4.1 | 4.1.x |
| redhat / openstack | 10 | 10.x |
| redhat / openstack | 9 | 9.x |
| redhat / openstack | 8 | 8.x |
| redhat / openstack | 11 | 11.x |
| redhat / virtualization | 4.0 | 4.0.x |