Description
In lib/ofp-util.c in Open vSwitch (OvS) before 2.8.1, there are multiple memory leaks while parsing malformed OpenFlow group mod messages. NOTE: the vendor disputes the relevance of this report, stating "it can only be triggered by an OpenFlow controller, but OpenFlow controllers have much more direct and powerful ways to force Open vSwitch to allocate memory, such as by inserting flows into the flow table."
References (2)
Core 2
Core References
Mailing List, Patch, Vendor Advisory x_refsource_confirm
https://mail.openvswitch.org/pipermail/ovs-dev/2017-September/339085.html
Mailing List, Patch, Vendor Advisory x_refsource_confirm
https://mail.openvswitch.org/pipermail/ovs-dev/2017-September/339086.html
Scores
CVSS v3
5.9
EPSS
0.0124
EPSS Percentile
65.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-772
Status
published
Products (1)
openvswitch/openvswitch
< 2.8.0
Published
Oct 02, 2017
Tracked Since
Feb 18, 2026