In the vrrpipsetshandler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
{ "ubuntu_priority": "low", "priority_reason": "An invalid and unlikely configuration must be set for this" }