 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2022-32166 |
| Description: | In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of “minimasks” function could lead access to an unmapped region of memory. This vulnerability is capable of crashing the software, memory modification, and possible remote execution. |
| Test IDs: | 1.3.6.1.4.1.25623.1.1.12.2022.5698.1 1.3.6.1.4.1.25623.1.1.12.2022.5698.2 1.3.6.1.4.1.25623.1.0.893168 1.3.6.1.4.1.25623.1.1.4.2022.4050.1 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2022-32166 https://github.com/cloudbase/ovs/commit/2ed6505555cdcb46f9b1f0329d1491b75290fc73 https://github.com/cloudbase/ovs/commit/2ed6505555cdcb46f9b1f0329d1491b75290fc73 https://www.mend.io/vulnerability-database/CVE-2022-32166 https://www.mend.io/vulnerability-database/CVE-2022-32166 https://lists.debian.org/debian-lts-announce/2022/10/msg00036.html |