Описание
Security update for openvswitch3
This update for openvswitch3 fixes the following issues:
- CVE-2023-3966: Fixed invalid memory access in Geneve with HW offload (bsc#1219465).
Список пакетов
SUSE Linux Enterprise Micro 5.5
libopenvswitch-3_1-0-3.1.0-150500.3.16.1
libovn-23_03-0-23.03.0-150500.3.16.1
openvswitch3-3.1.0-150500.3.16.1
openvswitch3-pki-3.1.0-150500.3.16.1
openvswitch3-vtep-3.1.0-150500.3.16.1
ovn3-23.03.0-150500.3.16.1
ovn3-central-23.03.0-150500.3.16.1
ovn3-docker-23.03.0-150500.3.16.1
ovn3-host-23.03.0-150500.3.16.1
ovn3-vtep-23.03.0-150500.3.16.1
python3-ovs3-3.1.0-150500.3.16.1
SUSE Linux Enterprise Module for Server Applications 15 SP5
libopenvswitch-3_1-0-3.1.0-150500.3.16.1
libovn-23_03-0-23.03.0-150500.3.16.1
openvswitch3-3.1.0-150500.3.16.1
openvswitch3-devel-3.1.0-150500.3.16.1
openvswitch3-ipsec-3.1.0-150500.3.16.1
openvswitch3-pki-3.1.0-150500.3.16.1
openvswitch3-test-3.1.0-150500.3.16.1
openvswitch3-vtep-3.1.0-150500.3.16.1
ovn3-23.03.0-150500.3.16.1
ovn3-central-23.03.0-150500.3.16.1
ovn3-devel-23.03.0-150500.3.16.1
ovn3-docker-23.03.0-150500.3.16.1
ovn3-host-23.03.0-150500.3.16.1
ovn3-vtep-23.03.0-150500.3.16.1
python3-ovs3-3.1.0-150500.3.16.1
openSUSE Leap 15.5
libopenvswitch-3_1-0-3.1.0-150500.3.16.1
libovn-23_03-0-23.03.0-150500.3.16.1
openvswitch3-3.1.0-150500.3.16.1
openvswitch3-devel-3.1.0-150500.3.16.1
openvswitch3-doc-3.1.0-150500.3.16.1
openvswitch3-ipsec-3.1.0-150500.3.16.1
openvswitch3-pki-3.1.0-150500.3.16.1
openvswitch3-test-3.1.0-150500.3.16.1
openvswitch3-vtep-3.1.0-150500.3.16.1
ovn3-23.03.0-150500.3.16.1
ovn3-central-23.03.0-150500.3.16.1
ovn3-devel-23.03.0-150500.3.16.1
ovn3-doc-23.03.0-150500.3.16.1
ovn3-docker-23.03.0-150500.3.16.1
ovn3-host-23.03.0-150500.3.16.1
ovn3-vtep-23.03.0-150500.3.16.1
python3-ovs3-3.1.0-150500.3.16.1
Ссылки
- Link for SUSE-SU-2024:0738-1
- E-Mail link for SUSE-SU-2024:0738-1
- SUSE Security Ratings
- SUSE Bug 1219465
- SUSE CVE CVE-2023-3966 page
Описание
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.
Затронутые продукты
SUSE Linux Enterprise Micro 5.5:libopenvswitch-3_1-0-3.1.0-150500.3.16.1
SUSE Linux Enterprise Micro 5.5:libovn-23_03-0-23.03.0-150500.3.16.1
SUSE Linux Enterprise Micro 5.5:openvswitch3-3.1.0-150500.3.16.1
SUSE Linux Enterprise Micro 5.5:openvswitch3-pki-3.1.0-150500.3.16.1
Ссылки
- CVE-2023-3966
- SUSE Bug 1219465