CVE-2023-3966
published 2024-02-22CVE-2023-3966: A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openvswitch | < openvswitch 3.1.0-2+deb12u1 (bookworm) | openvswitch 3.1.0-2+deb12u1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| msrc | azl3_openvswitch_2.17.5-3_on_azure_linux_3.0 | — | — |
| msrc | azl3_openvswitch_3.3.0-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_openvswitch_2.17.9-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| openvswitch | openvswitch | < 3.1.0 | 3.1.0 |
| openvswitch | openvswitch | >= 0 < 2.15.0+ds1-2+deb11u5 | 2.15.0+ds1-2+deb11u5 |
| openvswitch | openvswitch | >= 0 < 3.1.0-2+deb12u1 | 3.1.0-2+deb12u1 |
| openvswitch | openvswitch | >= 0 < 3.3.0-1 | 3.3.0-1 |
| openvswitch | openvswitch | >= 0 < 3.3.0-1 | 3.3.0-1 |
| openvswitch | openvswitch | >= 0 < 2.13.8-0ubuntu1.4 | 2.13.8-0ubuntu1.4 |
| openvswitch | openvswitch | >= 0 < 2.17.9-0ubuntu0.22.04.1 | 2.17.9-0ubuntu0.22.04.1 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH