CVE-2023-5366

Related Files

Debian Security Advisory 5640-1

Posted Mar 15, 2024

Authored by Debian | Site debian.org

Debian Linux Security Advisory 5640-1 - Two vulnerabilities were discovered in Open vSwitch, a software-based Ethernet virtual switch, which could result in a bypass of OpenFlow rules or denial of service.

tags | advisory, denial of service, vulnerability

systems | linux, debian

advisories | CVE-2023-3966, CVE-2023-5366

SHA-256 | ee33fda52165e0797d00ba28edf1c0746142b6af8db3080011d86af844a64baa

Download | Favorite | View

Ubuntu Security Notice USN-6690-1

Posted Mar 12, 2024

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6690-1 - Timothy Redaelli and Haresh Khandelwal discovered that Open vSwitch incorrectly handled certain crafted Geneve packets when hardware offloading via the netlink path is enabled. A remote attacker could possibly use this issue to cause Open vSwitch to crash, leading to a denial of service. It was discovered that Open vSwitch incorrectly handled certain ICMPv6 Neighbor Advertisement packets. A remote attacker could possibly use this issue to redirect traffic to arbitrary IP addresses.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2023-3966, CVE-2023-5366

SHA-256 | c48aa2b70b96e75c736131cbd6e784fb35739c48c114c1dc28b66d826cb192ed

Download | Favorite | View

Ubuntu Security Notice USN-6514-1

Posted Nov 27, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6514-1 - It was discovered that Open vSwitch did not correctly handle OpenFlow rules for ICMPv6 Neighbour Advertisement packets. A local attacker could possibly use this issue to redirect traffic to arbitrary IP addresses.

tags | advisory, arbitrary, local

systems | linux, ubuntu

advisories | CVE-2023-5366

SHA-256 | aa3fc5fdd98437b425313813d038d5f08499ac9370740d8a56cb41943df59290

Download | Favorite | View