========================================================================== Ubuntu Security Notice USN-6691-1 March 12, 2024
ovn vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: OVN could be made to disrupt traffic. Software Description: - ovn: system to support virtual network abstraction Details: It was discovered that OVN incorrectly enabled OVS Bidirectional Forwarding Detection on logical ports. A remote attacker could possibly use this issue to disrupt traffic. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.10: ovn-central 23.09.0-1ubuntu0.1 ovn-common 23.09.0-1ubuntu0.1 ovn-host 23.09.0-1ubuntu0.1 ovn-ic 23.09.0-1ubuntu0.1 Ubuntu 22.04 LTS: ovn-central 22.03.3-0ubuntu0.22.04.2 ovn-common 22.03.3-0ubuntu0.22.04.2 ovn-host 22.03.3-0ubuntu0.22.04.2 ovn-ic 22.03.3-0ubuntu0.22.04.2 Ubuntu 20.04 LTS: ovn-central 20.03.2-0ubuntu0.20.04.5 ovn-common 20.03.2-0ubuntu0.20.04.5 ovn-host 20.03.2-0ubuntu0.20.04.5 ovn-ic 20.03.2-0ubuntu0.20.04.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6691-1 CVE-2024-2182 Package Information: https://launchpad.net/ubuntu/+source/ovn/23.09.0-1ubuntu0.1 https://launchpad.net/ubuntu/+source/ovn/22.03.3-0ubuntu0.22.04.2 https://launchpad.net/ubuntu/+source/ovn/20.03.2-0ubuntu0.20.04.5
OpenPGP_signature.asc
Description: OpenPGP digital signature
