CVE-2017-9214 — CRITICAL (9.8)

Vulnerability Description

In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function `ofputil_pull_queue_get_config_reply10` in `lib/ofp-util.c`.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Openvswitch	Openvswitch	2.7.0
Debian	Debian Linux	9.0
Redhat	Openstack	6.0
Redhat	Virtualization	4.1
Redhat	Virtualization Manager	4.1
Redhat	Enterprise Linux	7.0

Related Weaknesses (CWE)

CWE-191

References

https://access.redhat.com/errata/RHSA-2017:2418Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2553Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2648Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2665Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2692Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2698Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2727Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/02/msg00032.htmlMailing ListThird Party Advisory
https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332711.htmlMailing ListPatchVendor Advisory
https://access.redhat.com/errata/RHSA-2017:2418Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2553Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2648Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2665Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2692Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2698Third Party Advisory

FAQ

What is CVE-2017-9214?

CVE-2017-9214 is a vulnerability with a CVSS score of 9.8 (CRITICAL). In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function `ofputil_pul...

How severe is CVE-2017-9214?

CVE-2017-9214 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2017-9214?

Check the references section above for vendor advisories and patch information. Affected products include: Openvswitch Openvswitch, Debian Debian Linux, Redhat Openstack, Redhat Virtualization, Redhat Virtualization Manager.