A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. An attacker could use this flaw to potentially exhaust available memory by keeping sending packet fragments.
References
Link | Resource |
---|---|
https://access.redhat.com/security/cve/CVE-2021-3905 | Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=2019692 | Issue Tracking Patch Third Party Advisory |
https://github.com/openvswitch/ovs-issues/issues/226 | Exploit Issue Tracking Patch Third Party Advisory |
https://github.com/openvswitch/ovs/commit/803ed12e31b0377c37d7aa8c94b3b92f2081e349 | Patch Third Party Advisory |
https://security.gentoo.org/glsa/202311-16 | |
https://ubuntu.com/security/CVE-2021-3905 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-08-23T00:00:00
Updated: 2023-11-26T11:06:13.552890
Reserved: 2021-10-26T00:00:00
Link: CVE-2021-3905
JSON object: View
NVD Information
Status : Modified
Published: 2022-08-23T16:15:10.177
Modified: 2023-11-26T11:15:08.147
Link: CVE-2021-3905
JSON object: View
Redhat Information
No data.
CWE