-----BEGIN PGP SIGNATURE-----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=WO9/
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-7396-1
March 31, 2025
ovn vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
OVN would allow unintended access to the network.
Software Description:
- ovn: system to support virtual network abstraction
Details:
Marius Berntsberg, Trygve Vea, Tore Anderson, Rodolfo Alonso, Jay Faulkner,
and Brian Haley discovered that OVN incorrectly handled certain crafted UDP
packets. A remote attacker could possibly use this issue to bypass egress
ACL rules.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.10
ovn-central 24.09.0-1ubuntu0.1
ovn-common 24.09.0-1ubuntu0.1
ovn-docker 24.09.0-1ubuntu0.1
ovn-host 24.09.0-1ubuntu0.1
ovn-ic 24.09.0-1ubuntu0.1
Ubuntu 24.04 LTS
ovn-central 24.03.2-0ubuntu0.24.04.2
ovn-common 24.03.2-0ubuntu0.24.04.2
ovn-docker 24.03.2-0ubuntu0.24.04.2
ovn-host 24.03.2-0ubuntu0.24.04.2
ovn-ic 24.03.2-0ubuntu0.24.04.2
Ubuntu 22.04 LTS
ovn-central 22.03.3-0ubuntu0.22.04.5
ovn-common 22.03.3-0ubuntu0.22.04.5
ovn-docker 22.03.3-0ubuntu0.22.04.5
ovn-host 22.03.3-0ubuntu0.22.04.5
ovn-ic 22.03.3-0ubuntu0.22.04.5
Ubuntu 20.04 LTS
ovn-central 20.03.2-0ubuntu0.20.04.6
ovn-common 20.03.2-0ubuntu0.20.04.6
ovn-docker 20.03.2-0ubuntu0.20.04.6
ovn-host 20.03.2-0ubuntu0.20.04.6
ovn-ic 20.03.2-0ubuntu0.20.04.6
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7396-1
CVE-2025-0650
Package Information:
https://launchpad.net/ubuntu/+source/ovn/24.09.0-1ubuntu0.1
https://launchpad.net/ubuntu/+source/ovn/24.03.2-0ubuntu0.24.04.2
https://launchpad.net/ubuntu/+source/ovn/22.03.3-0ubuntu0.22.04.5
https://launchpad.net/ubuntu/+source/ovn/20.03.2-0ubuntu0.20.04.6
No comments:
Post a Comment