High severity8.8NVD Advisory· Published May 29, 2017· Updated Jun 17, 2026
CVE-2016-10377
CVE-2016-10377
Description
In Open vSwitch (OvS) 2.5.0, a malformed IP packet can cause the switch to read past the end of the packet buffer due to an unsigned integer underflow in lib/flow.c in the function miniflow_extract, permitting remote bypass of the access control list enforced by the switch.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:openvswitch:openvswitch:2.5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:openvswitch:openvswitch:2.5.0:*:*:*:*:*:*:*
- (no CPE)range: 2.5.0
Patches
Vulnerability mechanics
References
1- mail.openvswitch.org/pipermail/ovs-dev/2016-July/319503.htmlnvdMailing ListPatchVendor Advisory
News mentions
0No linked articles in our index yet.