CVE-2018-17204 — MEDIUM (4.3)

Q: How severe is CVE-2018-17204?

CVE-2018-17204 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-17204?

Check the references section above for vendor advisories and patch information. Affected products include: Openvswitch Openvswitch, Redhat Openstack, Canonical Ubuntu Linux, Debian Debian Linux.

Vulnerability Description

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parse_group_prop_ntr_selection_method in lib/ofp-util.c. When decoding a group mod, it validates the group type and command after the whole group mod has been decoded. The OF1.5 decoder, however, tries to use the type and command earlier, when it might still be invalid. This causes an assertion failure (via OVS_NOT_REACHED). ovs-vswitchd does not enable support for OpenFlow 1.5 by default.

CVSS Score

4.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Openvswitch	Openvswitch	>= 2.7.0, <= 2.7.6
Redhat	Openstack	10
Canonical	Ubuntu Linux	16.04
Debian	Debian Linux	9.0

Related Weaknesses (CWE)

CWE-617

References

https://access.redhat.com/errata/RHSA-2018:3500Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0053Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0081Third Party Advisory
https://github.com/openvswitch/ovs/commit/4af6da3b275b764b1afe194df6499b33d2bf4cPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2021/02/msg00032.htmlMailing ListThird Party Advisory
https://usn.ubuntu.com/3873-1/Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:3500Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0053Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0081Third Party Advisory
https://github.com/openvswitch/ovs/commit/4af6da3b275b764b1afe194df6499b33d2bf4cPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2021/02/msg00032.htmlMailing ListThird Party Advisory
https://usn.ubuntu.com/3873-1/Third Party Advisory

FAQ

What is CVE-2018-17204?

CVE-2018-17204 is a vulnerability with a CVSS score of 4.3 (MEDIUM). An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parse_group_prop_ntr_selection_method in lib/ofp-util.c. When decoding a group mod, it validates the group type and command...

How severe is CVE-2018-17204?

CVE-2018-17204 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-17204?

Check the references section above for vendor advisories and patch information. Affected products include: Openvswitch Openvswitch, Redhat Openstack, Canonical Ubuntu Linux, Debian Debian Linux.