(RHSA-2024:1394) Important: ovn23.03 security update

2024-03-1915:22:30

access.redhat.com

ovn

open virtual network

virtual network abstraction

security update

denial of service

cve-2024-2182

cvss score

references section

unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.2

Confidence

Low

EPSS

0.001

Percentile

17.1%

JSON

OVN, the Open Virtual Network, is a system to support virtual network
abstraction. OVN complements the existing capabilities of OVS to add
native support for virtual network abstractions, such as virtual L2 and L3
overlays and security groups.

Security fix(es):

ovn23.03: insufficient validation of BFD packets may lead to denial of service (CVE-2024-2182)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9aarch64ovn23.03-vtep< 23.03.1-100.el9fdpovn23.03-vtep-23.03.1-100.el9fdp.aarch64.rpm
RedHat9x86_64ovn23.03-vtep-debuginfo< 23.03.1-100.el9fdpovn23.03-vtep-debuginfo-23.03.1-100.el9fdp.x86_64.rpm
RedHat9x86_64ovn23.03-host< 23.03.1-100.el9fdpovn23.03-host-23.03.1-100.el9fdp.x86_64.rpm
RedHat9x86_64ovn23.03-debuginfo< 23.03.1-100.el9fdpovn23.03-debuginfo-23.03.1-100.el9fdp.x86_64.rpm
RedHat9s390xovn23.03-central< 23.03.1-100.el9fdpovn23.03-central-23.03.1-100.el9fdp.s390x.rpm
RedHat9ppc64leovn23.03< 23.03.1-100.el9fdpovn23.03-23.03.1-100.el9fdp.ppc64le.rpm
RedHat9ppc64leovn23.03-debuginfo< 23.03.1-100.el9fdpovn23.03-debuginfo-23.03.1-100.el9fdp.ppc64le.rpm
RedHat9aarch64ovn23.03-host-debuginfo< 23.03.1-100.el9fdpovn23.03-host-debuginfo-23.03.1-100.el9fdp.aarch64.rpm
RedHat9x86_64ovn23.03-central< 23.03.1-100.el9fdpovn23.03-central-23.03.1-100.el9fdp.x86_64.rpm
RedHat9x86_64ovn23.03-debugsource< 23.03.1-100.el9fdpovn23.03-debugsource-23.03.1-100.el9fdp.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	9	aarch64	ovn23.03-vtep	< 23.03.1-100.el9fdp	ovn23.03-vtep-23.03.1-100.el9fdp.aarch64.rpm
RedHat	9	x86_64	ovn23.03-vtep-debuginfo	< 23.03.1-100.el9fdp	ovn23.03-vtep-debuginfo-23.03.1-100.el9fdp.x86_64.rpm
RedHat	9	x86_64	ovn23.03-host	< 23.03.1-100.el9fdp	ovn23.03-host-23.03.1-100.el9fdp.x86_64.rpm
RedHat	9	x86_64	ovn23.03-debuginfo	< 23.03.1-100.el9fdp	ovn23.03-debuginfo-23.03.1-100.el9fdp.x86_64.rpm
RedHat	9	s390x	ovn23.03-central	< 23.03.1-100.el9fdp	ovn23.03-central-23.03.1-100.el9fdp.s390x.rpm
RedHat	9	ppc64le	ovn23.03	< 23.03.1-100.el9fdp	ovn23.03-23.03.1-100.el9fdp.ppc64le.rpm
RedHat	9	ppc64le	ovn23.03-debuginfo	< 23.03.1-100.el9fdp	ovn23.03-debuginfo-23.03.1-100.el9fdp.ppc64le.rpm
RedHat	9	aarch64	ovn23.03-host-debuginfo	< 23.03.1-100.el9fdp	ovn23.03-host-debuginfo-23.03.1-100.el9fdp.aarch64.rpm
RedHat	9	x86_64	ovn23.03-central	< 23.03.1-100.el9fdp	ovn23.03-central-23.03.1-100.el9fdp.x86_64.rpm
RedHat	9	x86_64	ovn23.03-debugsource	< 23.03.1-100.el9fdp	ovn23.03-debugsource-23.03.1-100.el9fdp.x86_64.rpm