PT-2021-24650 · Linux+1 · Linux Kernel+1
Published
2021-05-31
·
Updated
2021-05-31
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
openvswitch versions prior to v5.4.118
Linux Kernel versions v4.16 through v5.4.117
Description
The issue is related to a stack out-of-bounds (OOB) read that occurs while fragmenting IPv4 packets. This problem was introduced in Linux Kernel version v4.16 and is fixed in version v5.4.118. The actual impact and attack plausibility of this issue have not yet been proven.
Recommendations
For openvswitch versions prior to v5.4.118, update to version v5.4.118 or later to resolve the issue.
For Linux Kernel versions v4.16 through v5.4.117, update to version v5.4.118 or later to resolve the issue.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Kernel
Openvswitch