UbuntuUpdates.org

Package "openvswitch-switch-dpdk"

Name: openvswitch-switch-dpdk

Description:

DPDK enabled Open vSwitch switch implementation
Latest version: 2.13.8-0ubuntu1.4
Release: focal (20.04)
Level: security
Repository: main
Head package: openvswitch
Homepage: http://openvswitch.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "openvswitch-switch-dpdk"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "openvswitch-switch-dpdk" in Focal

Repository Area Version
base main 2.13.0-0ubuntu1
updates main 2.13.8-0ubuntu1.4

Changelog

Version: 2.13.1-0ubuntu0.20.04.4 2021-02-10 16:07:44 UTC

  openvswitch (2.13.1-0ubuntu0.20.04.4) focal-security; urgency=medium

  * SECURITY UPDATE: packet parsing vulnerability
    - debian/patches/CVE-2020-35498.patch: support extra padding length in
      lib/conntrack.c, lib/dp-packet.h, lib/flow.c, tests/classifier.at.
    - CVE-2020-35498

 -- Marc Deslauriers <email address hidden> Thu, 28 Jan 2021 14:47:58 -0500
Source diff to previous version
CVE-2020-35498 RESERVED

Version: 2.13.1-0ubuntu0.20.04.3 2021-01-13 18:06:20 UTC

  openvswitch (2.13.1-0ubuntu0.20.04.3) focal-security; urgency=medium

  * SECURITY UPDATE: buffer overflow decoding malformed packets in lldp
    - debian/patches/CVE-2015-8011.patch: check lengths in lib/lldp/lldp.c.
    - CVE-2015-8011
  * SECURITY UPDATE: Externally triggered memory leak in lldp
    - debian/patches/CVE-2020-27827.patch: properly free memory in
      lib/lldp/lldp.c.
    - CVE-2020-27827

 -- Marc Deslauriers <email address hidden> Fri, 08 Jan 2021 07:29:51 -0500
CVE-2015-8011 Buffer overflow in the lldp_decode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service (da
CVE-2020-27827 RESERVED


About   -   Send Feedback to @ubuntu_updates