Critical severity9.8NVD Advisory· Published May 23, 2017· Updated Jun 17, 2026
CVE-2017-9214
CVE-2017-9214
Description
In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function ofputil_pull_queue_get_config_reply10 in lib/ofp-util.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18cpe:2.3:a:openvswitch:openvswitch:2.7.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:openvswitch:openvswitch:2.7.0:*:*:*:*:*:*:*
- (no CPE)range: = 2.7.0
cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*
cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:virtualization:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:virtualization_manager:4.1:*:*:*:*:*:*:*
- osv-coords6 versionspkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/openvswitch&distro=SUSE%20OpenStack%20Cloud%206pkg:rpm/suse/openvswitch-dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/openvswitch-dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2
< 2.5.1-25.12.7+ 5 more
- (no CPE)range: < 2.5.1-25.12.7
- (no CPE)range: < 2.5.1-25.12.7
- (no CPE)range: < 2.5.1-25.12.7
- (no CPE)range: < 2.5.1-6.4.7
- (no CPE)range: < 2.5.1-25.12.8
- (no CPE)range: < 2.5.1-25.12.8
Patches
Vulnerability mechanics
References
9- mail.openvswitch.org/pipermail/ovs-dev/2017-May/332711.htmlnvdMailing ListPatchVendor Advisory
- access.redhat.com/errata/RHSA-2017:2418nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2553nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2648nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2665nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2692nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2698nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2727nvdThird Party Advisory
- lists.debian.org/debian-lts-announce/2021/02/msg00032.htmlnvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.