USN-6691-1

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/notices/USN-6691-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6691-1.json

JSON Data

https://api.osv.dev/v1/vulns/USN-6691-1

Related

Published

2024-03-12T14:18:08.940371Z

Modified

2024-03-12T14:18:08.940371Z

Summary

ovn vulnerability

Details

It was discovered that OVN incorrectly enabled OVS Bidirectional Forwarding Detection on logical ports. A remote attacker could possibly use this issue to disrupt traffic.

References

Affected packages

Ubuntu:20.04:LTS / ovn

Package

Name: ovn
Purl: pkg:deb/ubuntu/ovn@20.03.2-0ubuntu0.20.04.5?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

20.03.2-0ubuntu0.20.04.5

Affected versions

2.*

2.12.90~git20200107.c80e014d4-0ubuntu1

2.12.90~git20200107.c80e014d4-0ubuntu2

20.*

20.03.0~git20200212.9a4e68ec8-0ubuntu1

20.03.0~git20200212.9a4e68ec8-0ubuntu3

20.03.0-0ubuntu1

20.03.1-0ubuntu1

20.03.1-0ubuntu1.1

20.03.1-0ubuntu1.2

20.03.2-0ubuntu0.20.04.1

20.03.2-0ubuntu0.20.04.2

20.03.2-0ubuntu0.20.04.3

20.03.2-0ubuntu0.20.04.4

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-central"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-central-dbgsym"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-common"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-common-dbgsym"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-controller-vtep"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-controller-vtep-dbgsym"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-doc"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-docker"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-host"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-host-dbgsym"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-ic"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-ic-db"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-ic-db-dbgsym"
        },
        {
            "binary_version": "20.03.2-0ubuntu0.20.04.5",
            "binary_name": "ovn-ic-dbgsym"
        }
    ],
    "availability": "No subscription required"
}

Ubuntu:22.04:LTS / ovn

Package

Name: ovn
Purl: pkg:deb/ubuntu/ovn@22.03.3-0ubuntu0.22.04.2?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

22.03.3-0ubuntu0.22.04.2

Affected versions

21.*

21.09.0~git20210922.6549e5842-0ubuntu1

21.09.0~git20210922.6549e5842-0ubuntu2

21.09.0-0ubuntu2

21.12.0-0ubuntu1

22.*

22.03.0~git20220218.ed81be7-0ubuntu1

22.03.0-0ubuntu1

22.03.2-0ubuntu0.22.04.1

22.03.3-0ubuntu0.22.04.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-central"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-central-dbgsym"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-common"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-common-dbgsym"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-controller-vtep"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-controller-vtep-dbgsym"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-doc"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-docker"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-host"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-host-dbgsym"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-ic"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-ic-db"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-ic-db-dbgsym"
        },
        {
            "binary_version": "22.03.3-0ubuntu0.22.04.2",
            "binary_name": "ovn-ic-dbgsym"
        }
    ],
    "availability": "No subscription required"
}