[ovs-dev] [PATCH] ofp-util: Check length of buckets in ofputil_pull_ofp15_group_mod().
Ben Pfaff
blp at ovn.org
Thu Jul 6 23:46:40 UTC 2017
On Fri, May 26, 2017 at 12:59:06PM -0700, Ben Pfaff wrote:
> This code blindly read forward for the number of bytes specified by the
> message without checking that it was in range.
>
> This bug is part of OpenFlow 1.5 support. Open vSwitch does not enable
> OpenFlow 1.5 support by default.
>
> Reported-by: Bhargava Shastry <bshastry at sec.t-labs.tu-berlin.de>
> Signed-off-by: Ben Pfaff <blp at ovn.org>
This patch needs a review.
More information about the dev
mailing list