CVE-2026-43329

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for maximum number of actions The maximum number of flowtable hardware offload actions in IPv6 is: ethernet mangling 4 payload actions, 2 for each ethernet address SNAT 4 payload actions DNAT ...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990564)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990564 advisory. In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989144)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989144 advisory. In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch...

Malicious code in flow_actions_connector (npm)

The package flowactionsconnector was found to contain malicious code...

MAL-2025-20716 Malicious code in flow_actions_connector (npm)

The package flowactionsconnector was found to contain malicious code...

The vulnerabilities of the functions nla_alloc_flow_actions() and ovs_nla_free_set_action() in the net_openvswitch/flow_netlink.c module of the Linux kernel allow a attacker to cause a service failure.

The vulnerabilities of the functions nlaallocflowactions and ovsnlafreesetaction in the netopenvswitch/flownetlink.c module of the Linux kernel are related to memory leaks. Exploiting these vulnerabilities could allow an attacker to cause a service failure...

SUSE CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

DEBIAN-CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

CVE-2022-49086

CVE-2022-49086 affects the Linux kernel Open vSwitch actions: during parsing user-provided actions, the ovs_openvswitch module can allocate memory and leak it when destroying actions due to nested actions not being freed. The root cause is that several actions can hold nested lists of actions and...

SUSE-SU-2021:0298-1 Security update for openvswitch

This update for openvswitch fixes the following issues: - openvswitch was updated to 2.5.11 - CVE-2020-27827: Fixed a memory leak when parsing lldp packets bsc1181345 - datapath: Clear the L4 portion of the key for 'later' fragments - datapath: Properly set L4 keys on 'later' IP fragments -...