Control: tag -1 pending
Hello,
Bug #1063492 in openvswitch reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/openstack-team/third-party/openvswitch/-/commit/90a5aef3bdd4c210839b4de1f8bbfcdb5e855265
------------------------------------------------------------------------
* CVE-2023-5366: A flaw was found in Open vSwitch that allows ICMPv6 Neighbor
Advertisement packets between virtual machines to bypass OpenFlow rules.
This issue may allow a local attacker to create specially crafted packets
with a modified or spoofed target IP address field that can redirect ICMPv6
traffic to arbitrary IP addresses. Added upstream patch: "Fix missing masks
on a final stage with ports trie".
* CVE-2023-3966: Invalid memory access in Geneve with HW offload. Add
upstream patches (Closes: #1063492):
- Fix the mask for tunnel metadata length
- Check geneve metadata length ------------------------------------------------------------------------
(this message was generated automatically)
--
Greetings
https://bugs.debian.org/1063492
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)