RHSA-2018:3500 Red Hat Security Advisory: openvswitch security, bug fix, and enhancement update

Bulletin has no description...

RHSA-2016:0524 Red Hat Security Advisory: openvswitch security update

Bulletin has no description...

RHSA-2016:0615 Red Hat Security Advisory: openvswitch security update

Bulletin has no description...

RHBA-2020:5310 Red Hat Bug Fix Advisory: openvswitch2.13 bug fix and enhancement update

Bulletin has no description...

The vulnerability of the OpenVSwitch multi-level switch lies in the implementation of incorrect control flow management. This allows attackers to access confidential data and also cause service failures.

The vulnerability of the OpenVSwitch multi-level switch program is related to the implementation of incorrect control flow. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, as well as cause service failures...

SUSE-SU-2024:3048-1 Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059158 fixes several issues. The following security issues were fixed: - CVE-2021-47402: Fixed use-after-free in flwalk bsc1225301 - CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp bsc1225202. - CVE-2024-27398: Fixed...

SUSE-SU-2024:3043-1 Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024183 fixes several issues. The following security issues were fixed: - CVE-2021-47402: Fixed use-after-free in flwalk bsc1225301 - CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp bsc1225202. - CVE-2024-27398: Fixed...

SUSE-SU-2024:3037-1 Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122201 fixes several issues. The following security issues were fixed: - CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp bsc1225202. - CVE-2024-27398: Fixed use-after-free bugs caused by scosocktimeout bsc1225013. -...

kernel: net: openvswitch: fix overwriting ct original tuple for ICMPv6

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix overwriting ct original tuple for ICMPv6 OVSPACKETCMDEXECUTE has 3 main attributes: - OVSPACKETATTRKEY - Packet metadata in a netlink format. - OVSPACKETATTRPACKET - Binary packet content. -...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog CVE-2022-50865 In the Linux kernel, the following vulnerability has been resolved: genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix potential data-race in nftobjtypeget CVE-2024-27019 In the Linux kernel, the following vulnerability has been resolved: genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offlin...

Oracle Linux 8 : kernel (ELSA-2024-5101)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5101 advisory. - ionic: fix use after netifnapidel CKI Backport Bot RHEL-47624 CVE-2024-39502 - ionic: clean interrupt before enabling queue to avoid credit race CKI...

kernel: inet: inet_defrag: prevent sk release while still in use

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use iplocalout and other functions can pass skb-sk as function argument. If the skb is a fragment and reassembly happens before such function call returns, the sk must not be...

kernel: net: openvswitch: Fix Use-After-Free in ovs_ct_exit

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix Use-After-Free in ovsctexit The Linux kernel CVE team has assigned CVE-2024-27395 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050836-CVE-2024-27395-573e@gregkh/T...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ipvlan: add ipvlanroutev6outbound helper CVE-2023-52796 In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix RPC client cleaned up the freed pipefs dentries CVE-2023-52803 In the Linux...

Photon OS 5.0: Openvswitch PHSA-2023-5.0-0089

An update of the openvswitch package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0089. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 3.0: Openvswitch PHSA-2024-3.0-0738

An update of the openvswitch package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0738. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 3.0: Openvswitch PHSA-2021-3.0-0292

An update of the openvswitch package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-3.0-0292. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 5.0: Openvswitch PHSA-2023-5.0-0093

An update of the openvswitch package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0093. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 3.0: Openvswitch PHSA-2023-3.0-0646

An update of the openvswitch package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0646. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...