Medium severity4.9NVD Advisory· Published Sep 19, 2018· Updated Jun 17, 2026
CVE-2018-17206
CVE-2018-17206
Description
An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6. The decode_bundle function inside lib/ofp-actions.c is affected by a buffer over-read issue during BUNDLE action decoding.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=2.7.6
- osv-coords2 versionspkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/openvswitch&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3
< 2.7.6-3.23.1+ 1 more
- (no CPE)range: < 2.7.6-3.23.1
- (no CPE)range: < 2.7.6-3.23.1
Patches
Vulnerability mechanics
References
6- github.com/openvswitch/ovs/commit/9237a63c47bd314b807cda0bd2216264e82edbe8nvdPatchThird Party Advisory
- access.redhat.com/errata/RHSA-2018:3500nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2019:0053nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2019:0081nvdThird Party Advisory
- lists.debian.org/debian-lts-announce/2021/02/msg00032.htmlnvdMailing ListThird Party Advisory
- usn.ubuntu.com/3873-1/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.