VulnerableCode Package Details - pkg:deb/debian/openvswitch@3.7.1-2?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-167g-xgrw-kubp	openvswitch: Mishandle of group mods in lib/ofp-util.c:parse_group_prop_ntr_selection_method() allows for assertion failure	CVE-2018-17204
VCID-1rz7-uz9z-2kbr	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet	CVE-2023-3966
VCID-21ps-f19w-87hx	openvswitch: Buffer over-read while parsing the group mod OpenFlow message	CVE-2017-9265
VCID-2zq9-f9yb-v3gw	openvswitch: Buffer over-read in lib/ofp-actions.c:decode_bundle()	CVE-2018-17206
VCID-4rhb-vhvc-v3cx	openvswitch: Integer underflow in the ofputil_pull_queue_get_config_reply10 function	CVE-2017-9214
VCID-5whw-rhdy-nkew	openvswitch: openvswitch don't match packets on nd_target field	CVE-2023-5366
VCID-6gap-zvsn-fqg7	openvswitch: Error during bundle commit in ofproto/ofproto.c:ofproto_rule_insert__() allows for crash	CVE-2018-17205
VCID-719y-s4zw-ekdc	lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c	CVE-2015-8011
VCID-at6t-sgxg-j7gr	openvswitch 2.17.8 was discovered to contain a memory leak via the function xmalloc__ in openvswitch-2.17.8/lib/util.c.	CVE-2024-22563
VCID-buc7-dne2-yqaj	Multiple denial of service vulnerabilites have been found in Open vSwitch.	CVE-2022-4337
VCID-d8d2-d81a-nkgk	Multiple denial of service vulnerabilites have been found in Open vSwitch.	CVE-2022-4338
VCID-dz8t-nfj7-skgz	Multiple denial of service vulnerabilites have been found in Open vSwitch.	CVE-2020-27827
VCID-g5qm-fjsg-z3eq	openvswitch: Heap buffer over-read in flow.c	CVE-2022-32166
VCID-grv1-ckdm-xbc9	openvswitch: Unsigned integer overflow in the miniflow_extract function	CVE-2016-10377
VCID-jj4q-qp7b-j3hu	Multiple denial of service vulnerabilites have been found in Open vSwitch.	CVE-2020-35498
VCID-mnkm-d7ku-a3aq	Open vSwitch 1.4.2 uses world writable permissions for (1) /var/lib/openvswitch/pki/controllerca/incoming/ and (2) /var/lib/openvswitch/pki/switchca/incoming/, which allows local users to delete and overwrite arbitrary files.	CVE-2012-3449
VCID-nw3h-mswm-v7d2	Multiple denial of service vulnerabilites have been found in Open vSwitch.	CVE-2021-36980
VCID-qrfh-87d5-ybh6	openvswitch: Invalid processing of a malicious OpenFlow role status message	CVE-2017-9263
VCID-s6b4-xqmn-w3dc	openvswitch: Multiple memory leaks in lib/ofp-util.c while parsing malformed OpenFlow group mod messages	CVE-2017-14970
VCID-sq5h-zx4v-67hm	Multiple denial of service vulnerabilites have been found in Open vSwitch.	CVE-2023-1668
VCID-suzt-srq7-6qbm	A buffer overflow in Open vSwitch might allow remote attackers to execute arbitrary code.	CVE-2016-2074
VCID-wryy-hpwh-3qgx	Multiple denial of service vulnerabilites have been found in Open vSwitch.	CVE-2021-3905
VCID-xcxc-et9w-uqhd	openvswitch: Buffer over-read while parsing malformed TCP, UDP and IPv6 packets	CVE-2017-9264
VCID-y5t4-51s4-zqer		CVE-2026-34956

Vulnerability

Summary

Aliases

VCID-167g-xgrw-kubp

openvswitch: Mishandle of group mods in lib/ofp-util.c:parse_group_prop_ntr_selection_method() allows for assertion failure

CVE-2018-17204

VCID-1rz7-uz9z-2kbr

openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet

CVE-2023-3966

VCID-21ps-f19w-87hx

openvswitch: Buffer over-read while parsing the group mod OpenFlow message

CVE-2017-9265

VCID-2zq9-f9yb-v3gw

openvswitch: Buffer over-read in lib/ofp-actions.c:decode_bundle()

CVE-2018-17206

VCID-4rhb-vhvc-v3cx

openvswitch: Integer underflow in the ofputil_pull_queue_get_config_reply10 function

CVE-2017-9214

VCID-5whw-rhdy-nkew

openvswitch: openvswitch don't match packets on nd_target field

CVE-2023-5366

VCID-6gap-zvsn-fqg7

openvswitch: Error during bundle commit in ofproto/ofproto.c:ofproto_rule_insert__() allows for crash

CVE-2018-17205

VCID-719y-s4zw-ekdc

lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c

CVE-2015-8011

VCID-at6t-sgxg-j7gr

openvswitch 2.17.8 was discovered to contain a memory leak via the function xmalloc__ in openvswitch-2.17.8/lib/util.c.

CVE-2024-22563

VCID-buc7-dne2-yqaj

Multiple denial of service vulnerabilites have been found in Open vSwitch.

CVE-2022-4337

VCID-d8d2-d81a-nkgk

Multiple denial of service vulnerabilites have been found in Open vSwitch.

CVE-2022-4338

VCID-dz8t-nfj7-skgz

Multiple denial of service vulnerabilites have been found in Open vSwitch.

CVE-2020-27827

VCID-g5qm-fjsg-z3eq

openvswitch: Heap buffer over-read in flow.c

CVE-2022-32166

VCID-grv1-ckdm-xbc9

openvswitch: Unsigned integer overflow in the miniflow_extract function

CVE-2016-10377

VCID-jj4q-qp7b-j3hu

Multiple denial of service vulnerabilites have been found in Open vSwitch.

CVE-2020-35498

VCID-mnkm-d7ku-a3aq

Open vSwitch 1.4.2 uses world writable permissions for (1) /var/lib/openvswitch/pki/controllerca/incoming/ and (2) /var/lib/openvswitch/pki/switchca/incoming/, which allows local users to delete and overwrite arbitrary files.

CVE-2012-3449

VCID-nw3h-mswm-v7d2

Multiple denial of service vulnerabilites have been found in Open vSwitch.

CVE-2021-36980

VCID-qrfh-87d5-ybh6

openvswitch: Invalid processing of a malicious OpenFlow role status message

CVE-2017-9263

VCID-s6b4-xqmn-w3dc

openvswitch: Multiple memory leaks in lib/ofp-util.c while parsing malformed OpenFlow group mod messages

CVE-2017-14970

VCID-sq5h-zx4v-67hm

Multiple denial of service vulnerabilites have been found in Open vSwitch.

CVE-2023-1668

VCID-suzt-srq7-6qbm

A buffer overflow in Open vSwitch might allow remote attackers to execute arbitrary code.

CVE-2016-2074

VCID-wryy-hpwh-3qgx

Multiple denial of service vulnerabilites have been found in Open vSwitch.

CVE-2021-3905

VCID-xcxc-et9w-uqhd

openvswitch: Buffer over-read while parsing malformed TCP, UDP and IPv6 packets

CVE-2017-9264

VCID-y5t4-51s4-zqer

CVE-2026-34956

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-17T22:44:37.406644+00:00	Debian Importer	Fixing	VCID-y5t4-51s4-zqer	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.375482+00:00	Debian Importer	Fixing	VCID-at6t-sgxg-j7gr	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.333957+00:00	Debian Importer	Fixing	VCID-5whw-rhdy-nkew	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.295540+00:00	Debian Importer	Fixing	VCID-1rz7-uz9z-2kbr	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.258948+00:00	Debian Importer	Fixing	VCID-sq5h-zx4v-67hm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.207217+00:00	Debian Importer	Fixing	VCID-d8d2-d81a-nkgk	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.156983+00:00	Debian Importer	Fixing	VCID-buc7-dne2-yqaj	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.107109+00:00	Debian Importer	Fixing	VCID-g5qm-fjsg-z3eq	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.068499+00:00	Debian Importer	Fixing	VCID-wryy-hpwh-3qgx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:37.028875+00:00	Debian Importer	Fixing	VCID-nw3h-mswm-v7d2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.979467+00:00	Debian Importer	Fixing	VCID-jj4q-qp7b-j3hu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.938197+00:00	Debian Importer	Fixing	VCID-dz8t-nfj7-skgz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.896080+00:00	Debian Importer	Fixing	VCID-2zq9-f9yb-v3gw	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.858952+00:00	Debian Importer	Fixing	VCID-6gap-zvsn-fqg7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.821729+00:00	Debian Importer	Fixing	VCID-167g-xgrw-kubp	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.781786+00:00	Debian Importer	Fixing	VCID-21ps-f19w-87hx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.737455+00:00	Debian Importer	Fixing	VCID-xcxc-et9w-uqhd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.692625+00:00	Debian Importer	Fixing	VCID-qrfh-87d5-ybh6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.650040+00:00	Debian Importer	Fixing	VCID-4rhb-vhvc-v3cx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.608742+00:00	Debian Importer	Fixing	VCID-s6b4-xqmn-w3dc	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.568592+00:00	Debian Importer	Fixing	VCID-suzt-srq7-6qbm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.534268+00:00	Debian Importer	Fixing	VCID-grv1-ckdm-xbc9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.498043+00:00	Debian Importer	Fixing	VCID-719y-s4zw-ekdc	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:44:36.457391+00:00	Debian Importer	Fixing	VCID-mnkm-d7ku-a3aq	https://security-tracker.debian.org/tracker/data/json	38.4.0