CVE-2023-3153
- Source
- https://cve.org/CVERecord?id=CVE-2023-3153
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3153.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-3153
- Downstream
- Related
- Published
- 2023-10-04T12:15:10.503Z
- Modified
- 2026-03-14T12:07:32.998614Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured.
- References
-
- https://access.redhat.com/security/cve/CVE-2023-3153
- https://bugzilla.redhat.com/show_bug.cgi?id=2213279
- https://github.com/ovn-org/ovn/issues/198
- https://github.com/ovn-org/ovn/commit/9a3f7ed905e525ebdcb14541e775211cbb0203bd
- https://mail.openvswitch.org/pipermail/ovs-announce/2023-August/000327.html
- https://mail.openvswitch.org/pipermail/ovs-dev/2023-August/407553.html
Affected packages
Git / github.com/ovn-org/ovn
Affected ranges
- Type
- GIT
- Repo
- https://github.com/ovn-org/ovn
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "22.03.3" }, { "introduced": "22.03.4" }, { "fixed": "22.09.2" }, { "introduced": "22.09.3" }, { "fixed": "22.12.1" }, { "introduced": "22.12.2" }, { "fixed": "23.03.1" }, { "introduced": "23.03.2" }, { "fixed": "23.06.1" } ] }
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "4.0"
}
]
}
]
vanir_signatures
[
{
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2023-3153-7f2ceda7",
"target": {
"file": "northd/northd.c",
"function": "build_lswitch_destination_lookup_bmcast"
},
"digest": {
"length": 1612.0,
"function_hash": "100707879268515689071228807156796924197"
},
"signature_version": "v1",
"source": "https://github.com/ovn-org/ovn/commit/9a3f7ed905e525ebdcb14541e775211cbb0203bd"
},
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2023-3153-a165b368",
"target": {
"file": "lib/copp.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"50986681710720372360707408566068477418",
"252480662219656878439145177761545982267",
"142032261047848354833506823247262358887",
"329164269853397579377214380351543625034"
]
},
"signature_version": "v1",
"source": "https://github.com/ovn-org/ovn/commit/9a3f7ed905e525ebdcb14541e775211cbb0203bd"
},
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2023-3153-d78e6bf9",
"target": {
"file": "lib/copp.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"273984248180741880940998914494089443661",
"203185577382962333624321689680785327007",
"155368957386231067524344954408589049656",
"253753055849551589332896634626431003037"
]
},
"signature_version": "v1",
"source": "https://github.com/ovn-org/ovn/commit/9a3f7ed905e525ebdcb14541e775211cbb0203bd"
},
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2023-3153-f4ba0918",
"target": {
"file": "northd/northd.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"130994271946306197769789664995555076929",
"200663036279558230899598810320786448335",
"257927616725762713937645602867735527471",
"13358029243250610857060806115376031208",
"236156749985826493025022585418312343674",
"295079638578447228654133263734781380464"
]
},
"signature_version": "v1",
"source": "https://github.com/ovn-org/ovn/commit/9a3f7ed905e525ebdcb14541e775211cbb0203bd"
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3153.json"