CVE-2018-17204

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-17204
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-17204.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-17204
Downstream
Related
Published
2018-09-19T16:29:00.897Z
Modified
2026-03-15T22:19:46.686013Z
Severity
  • 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
Summary
[none]
Details

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parsegrouppropntrselectionmethod in lib/ofp-util.c. When decoding a group mod, it validates the group type and command after the whole group mod has been decoded. The OF1.5 decoder, however, tries to use the type and command earlier, when it might still be invalid. This causes an assertion failure (via OVSNOT_REACHED). ovs-vswitchd does not enable support for OpenFlow 1.5 by default.

References

Affected packages

Git / github.com/openvswitch/ovs

Affected ranges

Type
GIT
Repo
https://github.com/openvswitch/ovs
Events
Introduced
c298ef781c2d35d939fe163cbc2f41ea7b1cb8d1
Last affected
a3830aae25911fef587c08f7301b4665ecc17ae1
Fixed
4af6da3b275b764b1afe194df6499b33d2bf4cde
Database specific 
{
    "versions": [
        {
            "introduced": "2.7.0"
        },
        {
            "last_affected": "2.7.6"
        }
    ]
}

Affected versions

v2.*
v2.7.0
v2.7.1
v2.7.2
v2.7.3
v2.7.4
v2.7.5
v2.7.6

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "10"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "13"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.04"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "18.04"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "9.0"
            }
        ]
    }
]
vanir_signatures 
[
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "lib/ofp-util.c",
            "function": "parse_group_prop_ntr_selection_method"
        },
        "id": "CVE-2018-17204-b51ef21b",
        "deprecated": false,
        "source": "https://github.com/openvswitch/ovs/commit/4af6da3b275b764b1afe194df6499b33d2bf4cde",
        "digest": {
            "function_hash": "214259102366955435880281220928594186154",
            "length": 2184.0
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "lib/ofp-util.c"
        },
        "id": "CVE-2018-17204-f0ab235d",
        "deprecated": false,
        "source": "https://github.com/openvswitch/ovs/commit/4af6da3b275b764b1afe194df6499b33d2bf4cde",
        "digest": {
            "line_hashes": [
                "324069536227036265479594926544039812313",
                "195422576741556969579743949522281220711",
                "338052315750500283435229193513256384619",
                "178828300322648107947620676725417544283",
                "324069536227036265479594926544039812313",
                "195422576741556969579743949522281220711",
                "291563013136255650337827637680550410423",
                "322200582228573733839583898111724594769"
            ],
            "threshold": 0.9
        }
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-17204.json"