[ADVISORY] CVE-2023-3966: Open vSwitch: Invalid memory access in Geneve with HW offload.

[ADVISORY] CVE-2023-3966: Open vSwitch: Invalid memory access in Geneve with HW offload.

Open Source Security [[{„value“:“

Posted by Ilya Maximets on Feb 08

Description
===========

Multiple versions of Open vSwitch are vulnerable to crafted Geneve
packets causing invalid memory accesses and potential denial of service.
Triggering the vulnerability requires that Open vSwitch has flow hardware
offload with Linux TC flower enabled (other_config:hw-offload=true).
It is not enabled by default.

The issue is caused by insufficient validation of Geneve metadata
fields in the offload path. Open vSwitch…
„}]] Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert