UbuntuUpdates.org

Package "openvswitch-pki"

Name: openvswitch-pki

Description:

Open vSwitch public key infrastructure dependency package

Latest version: 2.17.9-0ubuntu0.22.04.1
Release: jammy (22.04)
Level: updates
Repository: universe
Head package: openvswitch
Homepage: http://openvswitch.org/

Links


Download "openvswitch-pki"


Other versions of "openvswitch-pki" in Jammy

Repository Area Version
base universe 2.17.0-0ubuntu1
security universe 2.17.9-0ubuntu0.22.04.1

Changelog

Version: 2.17.9-0ubuntu0.22.04.1 2024-03-12 16:07:20 UTC

  openvswitch (2.17.9-0ubuntu0.22.04.1) jammy-security; urgency=medium

  * Update to 2.17.9 to fix security issues.
    - CVE-2023-3966: vulnerable to crafted Geneve packets
    - CVE-2023-5366: OpenFlow rules bypass via ICMPv6 Neighbor Adv packets
  * d/p/0001-ovsdb-idl-Support-write-only-changed-IDL-monitor-mod.patch:
    updated for 2.17.9 changes.

 -- Marc Deslauriers <email address hidden> Thu, 29 Feb 2024 13:45:15 -0500

Source diff to previous version
CVE-2023-3966 A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invali
CVE-2023-5366 A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may

Version: 2.17.8-0ubuntu0.22.04.1 2023-11-30 03:07:01 UTC

  openvswitch (2.17.8-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream point release (LP: #2039908).

 -- Frode Nordahl <email address hidden> Fri, 20 Oct 2023 05:56:31 +0000

Source diff to previous version
2039908 [SRU] openvswitch 2.17.8 point release

Version: 2.17.7-0ubuntu0.22.04.1 2023-07-10 13:07:05 UTC

  openvswitch (2.17.7-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version 2.17.7 (LP: #2025323).

 -- Frode Nordahl <email address hidden> Thu, 29 Jun 2023 17:51:04 +0200

Source diff to previous version
2025323 [SRU] openvswitch 2.17.7 point release

Version: 2.17.5-0ubuntu0.22.04.2 2023-05-10 15:07:25 UTC

  openvswitch (2.17.5-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: remote traffic denial of service via crafted packets
    with IP proto 0
    - debian/patches/CVE-2023-1668.patch: Always mask ip proto field in
      include/openvswitch/meta-flow.h, lib/meta-flow.c,
      ofproto/ofproto-dpif-xlate.c, tests/ofproto-dpif.at,
      tests/ofproto.at, tests/packet-type-aware.at.
    - CVE-2023-1668

 -- Marc Deslauriers <email address hidden> Thu, 13 Apr 2023 09:48:01 -0400

Source diff to previous version
CVE-2023-1668 A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying

Version: 2.17.3-0ubuntu0.22.04.2 2023-02-27 15:07:03 UTC

  openvswitch (2.17.3-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: issues in Organization Specific TLV
    - debian/patches/CVE-2022-433x.patch: fix bugs when parsing malformed
      AutoAttach in lib/lldp/lldp.c, tests/ofproto-dpif.at.
    - CVE-2022-4337
    - CVE-2022-4338

 -- Marc Deslauriers <email address hidden> Wed, 22 Feb 2023 08:52:02 -0500

CVE-2022-4337 An out-of-bounds read in Organization Specific TLV was found in various versions of OpenvSwitch.
CVE-2022-4338 An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.



About   -   Send Feedback to @ubuntu_updates