USN-6514-1: Open vSwitch vulnerability
26 November 2023
Open vSwitch could be made to expose sensitive information over the network.
Releases
Packages
- openvswitch - Ethernet virtual switch
Details
It was discovered that Open vSwitch did not correctly handle OpenFlow
rules for ICMPv6 Neighbour Advertisement packets. A local attacker could
possibly use this issue to redirect traffic to arbitrary IP addresses.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 20.04
Ubuntu 18.04
-
openvswitch-common
-
2.9.8-0ubuntu0.18.04.5+esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
References
Related notices
- USN-6690-1: openvswitch-pki, openvswitch-test, openvswitch-ipsec, openvswitch-common, openvswitch-source, openvswitch-testcontroller, python3-openvswitch, openvswitch-doc, openvswitch-switch-dpdk, openvswitch-vtep, openvswitch, openvswitch-switch