OSV-2020-1414

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openvswitch/OSV-2020-1414.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-1414
Published
2020-07-28T00:00:13.378550Z
Modified
2023-04-20T22:40:34.629186Z
Summary
Heap-buffer-overflow in format_generic_odp_key
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20003

Crash type: Heap-buffer-overflow READ 1
Crash state:
format_generic_odp_key
check_attr_len
format_odp_key_attr
References

Affected packages

OSS-Fuzz / openvswitch

Package

Name
openvswitch
Purl
pkg:generic/openvswitch

Affected ranges

Type
GIT
Repo
https://github.com/openvswitch/ovs.git
Events
Introduced
dfa2e3d04948ce6ff78057008314efe79eea4764
Fixed
bb9303899b8bd7a9251a723393959c923d0c0196
Fixed
d40db569e2a83d925c67b3affa1a31de6d9ef07c

Affected versions

v2.*

v2.13.0
v2.13.1
v2.13.10
v2.13.11
v2.13.2
v2.13.3
v2.13.4
v2.13.5
v2.13.6
v2.13.7
v2.13.8
v2.13.9
v2.14.0

Ecosystem specific 

{
    "severity": "MEDIUM"
}