Homepage

org.onosproject:onos-core-net@2.7.0-rc1 vulnerabilities

  • latest version

    2.7.0

  • latest non vulnerable version

    2.5.1-rc1

  • first published

    10 years ago

  • latest version published

    3 years ago

  • licenses detected

  • package manager

    View on Maven Repository
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the org.onosproject:onos-core-net package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Improper Handling of Exceptional Conditions

    org.onosproject:onos-core-net is an ONOS network control core subsystem.

    Affected versions of this package are vulnerable to Improper Handling of Exceptional Conditions such that IntentManager attempts to install the IPv6 flow rules of an intent into an OpenFlow 1.0 switch that does not support IPv6. Improper handling of the difference in capabilities of the intent and switch is misleading to a network operator.

    How to fix Improper Handling of Exceptional Conditions?

    There is no fixed version for org.onosproject:onos-core-net.

    [2.5.1,)
    • H
    Denial of Service (DoS)

    org.onosproject:onos-core-net is an ONOS network control core subsystem.

    Affected versions of this package are vulnerable to Denial of Service (DoS) such that in IntentManager, the install-requested intent (which causes an exception) remains in pendingMap (in memory) forever. Deletion is possible neither by a user nor by the intermittent Intent Cleanup process.

    How to fix Denial of Service (DoS)?

    There is no fixed version for org.onosproject:onos-core-net.

    [2.5.1,)
    Go back to all versions of this package