1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.RC

  • Bug#1063492: marked as pending in openvswitch

    From Thomas Goirand@21:1/5 to All on Sun Feb 25 15:30:01 2024
    Control: tag -1 pending

    Hello,

    Bug #1063492 in openvswitch reported by you has been fixed in the
    Git repository and is awaiting an upload. You can see the commit
    message below and you can check the diff of the fix at:

    https://salsa.debian.org/openstack-team/third-party/openvswitch/-/commit/90a5aef3bdd4c210839b4de1f8bbfcdb5e855265

    ------------------------------------------------------------------------
    * CVE-2023-5366: A flaw was found in Open vSwitch that allows ICMPv6 Neighbor
    Advertisement packets between virtual machines to bypass OpenFlow rules.
    This issue may allow a local attacker to create specially crafted packets
    with a modified or spoofed target IP address field that can redirect ICMPv6
    traffic to arbitrary IP addresses. Added upstream patch: "Fix missing masks
    on a final stage with ports trie".
    * CVE-2023-3966: Invalid memory access in Geneve with HW offload. Add
    upstream patches (Closes: #1063492):
    - Fix the mask for tunnel metadata length
    - Check geneve metadata length ------------------------------------------------------------------------

    (this message was generated automatically)
    --
    Greetings

    https://bugs.debian.org/1063492

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)