UbuntuUpdates.org

Package "openvswitch-switch-dpdk"

Name: openvswitch-switch-dpdk

Description:

DPDK enabled Open vSwitch switch implementation
Latest version: 2.13.8-0ubuntu1.4
Release: focal (20.04)
Level: updates
Repository: main
Head package: openvswitch
Homepage: http://openvswitch.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "openvswitch-switch-dpdk"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "openvswitch-switch-dpdk" in Focal

Repository Area Version
base main 2.13.0-0ubuntu1
security main 2.13.8-0ubuntu1.4

Changelog

Version: 2.13.8-0ubuntu1.4 2024-03-12 16:07:12 UTC

  openvswitch (2.13.8-0ubuntu1.4) focal-security; urgency=medium

  * SECURITY UPDATE: Incomplete fix for CVE-2023-5366
    - debian/patches/CVE-2023-5366-2.patch: follow Open Flow spec
      converting from OF to DP in lib/odp-util.c, tests/ofproto-macros.at,
      tests/system-traffic.at.
    - CVE-2023-5366
  * SECURITY UPDATE: vulnerable to crafted Geneve packets
    - debian/patches/CVE-2023-3966.patch: check geneve metadata length in
      lib/netdev-offload-tc.c, tests/system-offloads-traffic.at.
    - CVE-2023-3966

 -- Marc Deslauriers <email address hidden> Fri, 01 Mar 2024 12:59:59 -0500
Source diff to previous version
CVE-2023-5366 A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may
CVE-2023-3966 A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invali

Version: 2.13.8-0ubuntu1.3 2023-11-27 03:06:51 UTC

  openvswitch (2.13.8-0ubuntu1.3) focal-security; urgency=medium

  * SECURITY UPDATE: improper flow lookup when handling specific final stage
    flow wildcards.
    - debian/patches/CVE-2023-5366.patch: seen bits from final stage added
      into stages map to get all necessary wildcards in lib/classifier.c.
    - CVE-2023-5366

 -- Evan Caville <email address hidden> Mon, 20 Nov 2023 15:38:12 +0200
Source diff to previous version
CVE-2023-5366 A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may

Version: 2.13.8-0ubuntu1.2 2023-05-10 15:07:16 UTC

  openvswitch (2.13.8-0ubuntu1.2) focal-security; urgency=medium

  * SECURITY UPDATE: remote traffic denial of service via crafted packets
    with IP proto 0
    - debian/patches/CVE-2023-1668.patch: Always mask ip proto field in
      include/openvswitch/meta-flow.h, lib/meta-flow.c,
      ofproto/ofproto-dpif-xlate.c, tests/ofproto-dpif.at,
      tests/ofproto.at, tests/packet-type-aware.at.
    - CVE-2023-1668

 -- Marc Deslauriers <email address hidden> Wed, 12 Apr 2023 14:58:36 -0400
Source diff to previous version
CVE-2023-1668 A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying

Version: 2.13.8-0ubuntu1.1 2023-02-27 15:06:59 UTC

  openvswitch (2.13.8-0ubuntu1.1) focal-security; urgency=medium

  * SECURITY UPDATE: issues in Organization Specific TLV
    - debian/patches/CVE-2022-433x.patch: fix bugs when parsing malformed
      AutoAttach in lib/lldp/lldp.c, tests/ofproto-dpif.at.
    - CVE-2022-4337
    - CVE-2022-4338

 -- Marc Deslauriers <email address hidden> Wed, 22 Feb 2023 08:56:25 -0500
Source diff to previous version
CVE-2022-4337 An out-of-bounds read in Organization Specific TLV was found in various versions of OpenvSwitch.
CVE-2022-4338 An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

Version: 2.13.8-0ubuntu1 2022-08-17 01:07:06 UTC

  openvswitch (2.13.8-0ubuntu1) focal; urgency=medium

  * New upstream point release (LP: #1980213).

 -- Frode Nordahl <email address hidden> Mon, 04 Jul 2022 10:01:53 +0100
1980213 [SRU] openvswitch 2.13.8


About   -   Send Feedback to @ubuntu_updates