CVE-2026-34956
published 2026-05-05CVE-2026-34956: A flaw was found in Open vSwitch. When Open vSwitch is configured with a conntrack flow using FTP helpers over the userspace datapath, a remote attacker can…
medium5.9CVSS 3.1
AVNACHPRNUINSUCNINAH
A flaw was found in Open vSwitch. When Open vSwitch is configured with a conntrack flow using FTP helpers over the userspace datapath, a remote attacker can send a specially crafted FTP stream with an EPASV command exceeding 255 characters. This heap access error can lead to a crash, resulting in a Denial of Service (DoS) for the affected system.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openvswitch | < openvswitch 3.7.1-1 (forky) | openvswitch 3.7.1-1 (forky) |
| openvswitch | openvswitch | — | — |
| rhosp-rhel8 | openstack-neutron-openvswitch-agent | — | — |
| rhosp-rhel9 | openstack-neutron-openvswitch-agent | — | — |
| rhosp13 | openstack-neutron-openvswitch-agent | — | — |
| rhosp13 | openstack-openvswitch-base | — | — |
| rhosp13 | openstack-ovn-base | — | — |