UBUNTU-CVE-2023-1668
- Source
- https://ubuntu.com/security/CVE-2023-1668
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-1668.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-1668
- Related
- Published
- 2023-04-10T22:15:00Z
- Modified
- 2024-10-15T14:11:14Z
- Severity
-
- 8.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results (for both kernel and userspace datapath) in installing a datapath flow matching all IP protocols (nw_proto is wildcarded) for this flow, but with an incorrect action, possibly causing incorrect handling of other IP packets with a != 0 IP protocol that matches this dp flow.
- References
Affected packages
Ubuntu:Pro:16.04:LTS / openvswitch
Package
- Name
- openvswitch
- Purl
- pkg:deb/ubuntu/openvswitch?arch=src?distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.4.0-0ubuntu4
2.4.0-0ubuntu5
2.5.0~git20160129.46a88d9-0ubuntu1
2.5.0~git20160219.522aca6-0ubuntu1
2.5.0~git20160219.522aca6-0ubuntu2
2.5.0~git20160219.522aca6-0ubuntu3
2.5.0-0ubuntu1
2.5.2-0ubuntu0.16.04.1
2.5.2-0ubuntu0.16.04.2
2.5.2-0ubuntu0.16.04.3
2.5.4-0ubuntu0.16.04.1
2.5.5-0ubuntu0.16.04.1
2.5.5-0ubuntu0.16.04.2
2.5.9-0ubuntu0.16.04.2
2.5.9-0ubuntu0.16.04.3
2.5.9-0ubuntu0.16.04.3+esm1
Ubuntu:18.04:LTS / openvswitch
Package
- Name
- openvswitch
- Purl
- pkg:deb/ubuntu/openvswitch?arch=src?distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.9.8-0ubuntu0.18.04.5
Affected versions
2.*
2.8.0-0ubuntu2
2.8.1-0ubuntu2
2.8.1-0ubuntu3
2.9.0~git20180205.5a39582ca-0ubuntu1
2.9.0-0ubuntu1
2.9.2-0ubuntu0.18.04.2
2.9.2-0ubuntu0.18.04.3
2.9.5-0ubuntu0.18.04.1
2.9.7-0ubuntu0.18.04.2
2.9.8-0ubuntu0.18.04.2
2.9.8-0ubuntu0.18.04.3
2.9.8-0ubuntu0.18.04.4
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-common"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-dbg"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-doc"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-pki"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-switch"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-switch-dpdk"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-test"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-testcontroller"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "openvswitch-vtep"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "ovn-central"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "ovn-common"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "ovn-controller-vtep"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "ovn-docker"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "ovn-host"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "python-openvswitch"
},
{
"binary_version": "2.9.8-0ubuntu0.18.04.5",
"binary_name": "python3-openvswitch"
}
]
}
Ubuntu:20.04:LTS / openvswitch
Package
- Name
- openvswitch
- Purl
- pkg:deb/ubuntu/openvswitch?arch=src?distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.13.8-0ubuntu1.2
Affected versions
2.*
2.12.0-0ubuntu1
2.12.0-0ubuntu2
2.12.1~git20191107.7accd1302-0ubuntu1
2.12.90~git20200107.af683565b-0ubuntu1
2.12.90~git20200107.af683565b-0ubuntu2
2.12.90~git20200107.af683565b-0ubuntu3
2.13.0~git20200127.dbdf66c29-0ubuntu2
2.13.0~git20200212.15ae9db33-0ubuntu1
2.13.0~git20200212.15ae9db33-0ubuntu2
2.13.0-0ubuntu1
2.13.1-0ubuntu0.20.04.1
2.13.1-0ubuntu0.20.04.3
2.13.1-0ubuntu0.20.04.4
2.13.3-0ubuntu0.20.04.1
2.13.3-0ubuntu0.20.04.2
2.13.5-0ubuntu1
2.13.8-0ubuntu1
2.13.8-0ubuntu1.1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-common"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-dbg"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-doc"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-pki"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-source"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-switch"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-switch-dpdk"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-test"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-testcontroller"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "openvswitch-vtep"
},
{
"binary_version": "2.13.8-0ubuntu1.2",
"binary_name": "python3-openvswitch"
}
]
}
Ubuntu:22.04:LTS / openvswitch
Package
- Name
- openvswitch
- Purl
- pkg:deb/ubuntu/openvswitch?arch=src?distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.17.5-0ubuntu0.22.04.2
Affected versions
2.*
2.16.0-0ubuntu2
2.16.0-0ubuntu3
2.16.0-0ubuntu4
2.17.0~git20220105.0d1ffb7-0ubuntu1
2.17.0~git20220118.1b9fd88-0ubuntu1
2.17.0~git20220121.109d024-0ubuntu1
2.17.0-0ubuntu1
2.17.2-0ubuntu0.22.04.1
2.17.2-0ubuntu0.22.04.2
2.17.3-0ubuntu0.22.04.1
2.17.3-0ubuntu0.22.04.2
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-common"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-dbg"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-doc"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-ipsec"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-pki"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-source"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-switch"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-switch-dpdk"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-test"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-testcontroller"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "openvswitch-vtep"
},
{
"binary_version": "2.17.5-0ubuntu0.22.04.2",
"binary_name": "python3-openvswitch"
}
]
}