In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of “minimasks” function could lead access to an unmapped region of memory. This vulnerability is capable of crashing the software, memory modification, and possible remote execution.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "openvswitch-common", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-common-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-dbg", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-ipsec", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-ipsec-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-pki", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-switch", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-switch-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-switch-dpdk", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-switch-dpdk-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-test", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-testcontroller", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-testcontroller-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-vtep", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "openvswitch-vtep-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-central", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-central-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-common", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-common-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-docker", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-docker-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-host", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "ovn-host-dbgsym", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" }, { "binary_name": "python-openvswitch", "binary_version": "2.5.9-0ubuntu0.16.04.3+esm1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "openvswitch-common", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-dbg", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-doc", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-pki", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-switch", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-switch-dpdk", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-test", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-testcontroller", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "openvswitch-vtep", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "ovn-central", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "ovn-common", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "ovn-controller-vtep", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "ovn-docker", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "ovn-host", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "python-openvswitch", "binary_version": "2.9.8-0ubuntu0.18.04.3" }, { "binary_name": "python3-openvswitch", "binary_version": "2.9.8-0ubuntu0.18.04.3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "openvswitch-common", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-dbg", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-doc", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-pki", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-source", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-switch", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-switch-dpdk", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-test", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-testcontroller", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "openvswitch-vtep", "binary_version": "2.13.8-0ubuntu1" }, { "binary_name": "python3-openvswitch", "binary_version": "2.13.8-0ubuntu1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "openvswitch-common", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-dbg", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-doc", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-ipsec", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-pki", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-source", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-switch", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-switch-dpdk", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-test", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-testcontroller", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "openvswitch-vtep", "binary_version": "2.17.2-0ubuntu0.22.04.1" }, { "binary_name": "python3-openvswitch", "binary_version": "2.17.2-0ubuntu0.22.04.1" } ] }