CVE-2016-2074

Buffer overflow in lib/flow.c in ovs-vswitchd in Open vSwitch 2.2.x and 2.3.x before 2.3.3 and 2.4.x before 2.4.1 allows remote attackers to execute arbitrary code via crafted MPLS packets, as demonstrated by a long string in an ovs-appctl command.

References

Affected packages

Git / github.com/openvswitch/ovs

Affected ranges

Type

GIT

Repo

https://github.com/openvswitch/ovs

Events

Introduced

Last affected

0dfed4ba9c8a16a1f316d709b7831a4e139472d4

Introduced

Last affected

b54186d797e0d4819e977bc75ae16b4ddd0e8cd1

Introduced

Last affected

b979c282ef040a20d09b8d6885648b09352f05db

Introduced

Last affected

3c2bea086ef8912d57331173af266f21d36740a0

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.3.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.3.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.4.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "3.1"
        }
    ]
}

Affected versions

v0.*

v0.90.0

v0.90.1

v0.90.2

v0.90.3

v0.90.4

v0.90.6

v0.90.7

v0.99.0

v0.99.1

v0.99.2

v1.*

v1.0.0

v1.0.1

v1.1.0pre1

v1.1.0pre2

v2.*

v2.3

v2.3.1

v2.4.0

v3.*

v3.1.0

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "2.2.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "2.3.0"
            }
        ]
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-2074.json"