Lucene search
Veracode Vulnerability DatabaseVERACODE:39921HistoryMar 24, 2023 - 12:41 a.m.
Denial Of Service (DoS)
2023-03-2400:41:01
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
openvswitch
denial of service
vulnerability
memory leak
ip fragmentation
attacks
software
0.005 Low
EPSS
Percentile
75.5%
openvswitch is vulnerable to Denial of Service (DoS) attacks. A memory leak occurs during userspace IP fragmentation processing, which allows an attacker to use this flaw to potentially exhaust available memory by keeping sending packet fragments, causing the application to crash.
References
access.redhat.com/errata/RHBA-2022:0051
access.redhat.com/security/cve/CVE-2021-3905
bugzilla.redhat.com/show_bug.cgi?id=2019692
github.com/openvswitch/ovs-issues/issues/226
github.com/openvswitch/ovs/commit/803ed12e31b0377c37d7aa8c94b3b92f2081e349
security.gentoo.org/glsa/202311-16
ubuntu.com/security/CVE-2021-3905
Related
cve
cve
CVE-2021-3905
2022-08-23 16:15:10
cbl_mariner
cbl_mariner
CVE-2021-3905 affecting package openvswitch 2.15.7-1
2022-09-17 05:56:38
nvd
nvd
CVE-2021-3905
2022-08-23 16:15:10
debiancve
debiancve
CVE-2021-3905
2022-08-23 16:15:10
redhatcve
redhatcve
CVE-2021-3905
2021-11-03 07:40:58
ubuntu
ubuntu
Open vSwitch vulnerability
2022-01-20 00:00:00
prion
prion
Memory corruption
2022-08-23 16:15:00
nessus
nessus
Ubuntu 21.10 : Open vSwitch vulnerability (USN-5242-1)
2022-01-20 00:00:00
GLSA-202311-16 : Open vSwitch: Multiple Vulnerabilities
2023-11-26 00:00:00
RHEL 7 : openvswitch (Unpatched Vulnerability)
2024-05-11 00:00:00
ubuntucve
ubuntucve
CVE-2021-3905
2021-11-08 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5242-1)
2022-01-28 00:00:00
cvelist
cvelist
CVE-2021-3905
2022-08-23 00:00:00
osv
osv
CVE-2021-3905
2022-08-23 16:15:10
rosalinux
rosalinux
Advisory ROSA-SA-2023-2262
2023-10-22 05:27:25
photon
photon
Important Photon OS Security Update - PHSA-2022-3.0-0478
2022-10-27 00:00:00
Critical Photon OS Security Update - PHSA-2022-0271
2022-10-28 00:00:00
Critical Photon OS Security Update - PHSA-2022-4.0-0271
2022-10-28 00:00:00
gentoo
gentoo
Open vSwitch: Multiple Vulnerabilities
2023-11-26 00:00:00