CVE-2020-27827
First published: Wed Jan 13 2021(Updated: )
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/openvswitch2.11 | <0:2.11.3-86.el7fd | 0:2.11.3-86.el7fd |
| redhat/openvswitch2.13 | <0:2.13.0-81.el7fd | 0:2.13.0-81.el7fd |
| redhat/openvswitch | <0:2.9.9-1.el7fd | 0:2.9.9-1.el7fd |
| redhat/openvswitch2.13 | <0:2.13.0-79.5.el8fd | 0:2.13.0-79.5.el8fd |
| redhat/openvswitch2.11 | <0:2.11.3-83.el8fd | 0:2.11.3-83.el8fd |
| redhat/ovn2.11 | <0:2.11.1-57.el7fd | 0:2.11.1-57.el7fd |
| redhat/redhat-virtualization-host | <0:4.3.14-20210322.0.el7_9 | 0:4.3.14-20210322.0.el7_9 |
| redhat/redhat-virtualization-host | <0:4.4.4-20210307.0.el8_3 | 0:4.4.4-20210307.0.el8_3 |
| debian/openvswitch | <=2.10.0+2018.08.28+git.8ca7c82b7d+ds1-12<=2.15.0~git20210104.def6eb1ea+dfsg1-3<=2.10.0+2018.08.28+git.8ca7c82b7d+ds1-12+deb10u2 | |
| debian/lldpd | <=1.0.3-1 | 1.0.3-1+deb10u2 1.0.11-1+deb11u2 1.0.16-1+deb12u1 1.0.17-1 |
| debian/openvswitch | 2.10.7+ds1-0+deb10u1 2.10.7+ds1-0+deb10u4 2.15.0+ds1-2+deb11u4 3.1.0-2 3.2.0-2 | |
| redhat/lldpd | <1.0.8 | 1.0.8 |
| redhat/openvswitch | <2.14.1 | 2.14.1 |
| redhat/openvswitch | <2.13.2 | 2.13.2 |
| redhat/openvswitch | <2.12.2 | 2.12.2 |
| redhat/openvswitch | <2.11.5 | 2.11.5 |
| redhat/openvswitch | <2.10.6 | 2.10.6 |
| redhat/openvswitch | <2.9.8 | 2.9.8 |
| redhat/openvswitch | <2.8.10 | 2.8.10 |
| redhat/openvswitch | <2.7.12 | 2.7.12 |
| redhat/openvswitch | <2.6.9 | 2.6.9 |
| Lldpd Project Lldpd | <1.0.8 | |
| Openvswitch Openvswitch | >=2.6.0<2.6.9 | |
| Openvswitch Openvswitch | >=2.7.0<2.7.12 | |
| Openvswitch Openvswitch | >=2.8.0<2.8.10 | |
| Openvswitch Openvswitch | >=2.9.0<2.9.8 | |
| Openvswitch Openvswitch | >=2.10.0<2.10.6 | |
| Openvswitch Openvswitch | >=2.11.0<2.11.5 | |
| Openvswitch Openvswitch | >=2.12.0<2.12.2 | |
| Openvswitch Openvswitch | >=2.13.0<2.13.2 | |
| Openvswitch Openvswitch | >=2.14.0<2.14.1 | |
| Redhat Openshift Container Platform | =4.0 | |
| Redhat Openstack | =10 | |
| Redhat Openstack | =13 | |
| Redhat Virtualization | =4.0 | |
| Redhat Enterprise Linux | =7.0 | |
| Redhat Enterprise Linux | =8.0 | |
| Fedoraproject Fedora | =33 | |
| Siemens Simatic Hmi Unified Comfort Panels Firmware | <17 | |
| Siemens Simatic Hmi Unified Comfort Panels | ||
| Siemens Simatic Net Cp 1243-1 Firmware | ||
| Siemens Simatic Net Cp 1243-1 | ||
| Siemens Simatic Net Cp 1243-8 Irc Firmware | ||
| Siemens Simatic Net Cp 1243-8 Irc | ||
| Siemens Simatic Net Cp 1542sp-1 Firmware | ||
| Siemens Simatic Net Cp 1542sp-1 | ||
| Siemens Simatic Net Cp 1542sp-1 Irc Firmware | ||
| Siemens Simatic Net Cp 1542sp-1 Irc | ||
| Siemens Simatic Net Cp 1543-1 Firmware | ||
| Siemens Simatic Net Cp 1543-1 | ||
| Siemens Simatic Net Cp 1543sp-1 Firmware | ||
| Siemens Simatic Net Cp 1543sp-1 | ||
| Siemens Simatic Net Cp 1545-1 Firmware | ||
| Siemens Simatic Net Cp 1545-1 | ||
| Siemens Tim 1531 Irc Firmware | <2.2 | |
| Siemens Tim 1531 Irc | ||
| Siemens Sinumerik One Firmware | <2.0.1 | |
| Siemens Sinumerik One | ||
| All of | ||
| Siemens Simatic Hmi Unified Comfort Panels | ||
| Siemens Simatic Hmi Unified Comfort Panels Firmware | <17 | |
| All of | ||
| Siemens Simatic Net Cp 1243-1 | ||
| Siemens Simatic Net Cp 1243-1 Firmware | ||
| All of | ||
| Siemens Simatic Net Cp 1243-8 Irc | ||
| Siemens Simatic Net Cp 1243-8 Irc Firmware | ||
| All of | ||
| Siemens Simatic Net Cp 1542sp-1 | ||
| Siemens Simatic Net Cp 1542sp-1 Firmware | ||
| All of | ||
| Siemens Simatic Net Cp 1542sp-1 Irc | ||
| Siemens Simatic Net Cp 1542sp-1 Irc Firmware | ||
| All of | ||
| Siemens Simatic Net Cp 1543-1 | ||
| Siemens Simatic Net Cp 1543-1 Firmware | ||
| All of | ||
| Siemens Simatic Net Cp 1543sp-1 | ||
| Siemens Simatic Net Cp 1543sp-1 Firmware | ||
| All of | ||
| Siemens Simatic Net Cp 1545-1 Firmware | ||
| Siemens Simatic Net Cp 1545-1 | ||
| All of | ||
| Siemens Tim 1531 Irc Firmware | <2.2 | |
| Siemens Tim 1531 Irc | ||
| All of | ||
| Siemens Sinumerik One Firmware | <2.0.1 | |
| Siemens Sinumerik One |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://security-tracker.debian.org/tracker/CVE-2020-27827
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27827
- https://mail.openvswitch.org/pipermail/ovs-announce/2021-January/000269.html
- https://github.com/openvswitch/ovs/commit/78e712c0b1dacc2f12d2a03d98f083d8672867f0
- https://salsa.debian.org/openstack-team/third-party/openvswitch/-/commit/b2467aed2d37594f4f06a59a6340d1f7fcea7524
- https://bugs.debian.org/980132
- https://security-tracker.debian.org/tracker/CVE-2015-8011
- https://mail.openvswitch.org/pipermail/ovs-announce/2021-January/000268.html
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980132
- https://bugzilla.redhat.com/show_bug.cgi?id=1921438
- https://mail.openvswitch.org/pipermail/ovs-dev/2021-January/379471.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-941426.pdf
- https://us-cert.cisa.gov/ics/advisories/icsa-21-194-07
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JYA4AMJXCNF6UPFG36L2TPPT32C242SP/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3T5XHPOGIPWCRRPJUE6P3HVC5PTSD5JS/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SKQWHG2SZJZSGC7PXVDAEJYBN7ESDR7D/
- https://security.gentoo.org/glsa/202311-16
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3T5XHPOGIPWCRRPJUE6P3HVC5PTSD5JS/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JYA4AMJXCNF6UPFG36L2TPPT32C242SP/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SKQWHG2SZJZSGC7PXVDAEJYBN7ESDR7D/
- https://github.com/lldpd/lldpd/commit/a8d3c90feca548fc0656d95b5d278713db86ff61
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1921442
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1921441
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1921440
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1921439
- https://github.com/openvswitch/ovs/pull/337
- https://access.redhat.com/errata/RHSA-2021:0497
- https://access.redhat.com/security/cve/cve-2020-27827
- https://access.redhat.com/errata/RHSA-2021:0837
- https://access.redhat.com/errata/RHSA-2021:0834
- https://access.redhat.com/errata/RHSA-2021:0835
- https://access.redhat.com/errata/RHSA-2021:0976
- https://access.redhat.com/errata/RHSA-2021:1050
- https://access.redhat.com/errata/RHSA-2021:1051
- https://access.redhat.com/errata/RHSA-2021:2077
- https://access.redhat.com/errata/RHSA-2021:2456
- https://www.cve.org/CVERecord?id=CVE-2020-27827 https://nvd.nist.gov/vuln/detail/CVE-2020-27827 https://mail.openvswitch.org/pipermail/ovs-dev/2021-January/379471.html
Parent vulnerabilities
(Appears in the following advisories)
- collector/redhat-cve
- collector/debian-bugs
- alias/CVE-2020-27827
- collector/security-tracker-debian
- collector/mitre-cve
- agent/author
- agent/type
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/references
- agent/severity
- agent/weakness
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- agent/tags
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- package-manager/redhat
- package-manager/debian
- vendor/lldpd project
- canonical/lldpd project lldpd
- vendor/openvswitch
- canonical/openvswitch openvswitch
- version/openvswitch openvswitch/2.6.0
- version/openvswitch openvswitch/2.7.0
- version/openvswitch openvswitch/2.8.0
- version/openvswitch openvswitch/2.9.0
- version/openvswitch openvswitch/2.10.0
- version/openvswitch openvswitch/2.11.0
- version/openvswitch openvswitch/2.12.0
- version/openvswitch openvswitch/2.13.0
- version/openvswitch openvswitch/2.14.0
- vendor/redhat
- canonical/redhat openshift container platform
- version/redhat openshift container platform/4.0
- canonical/redhat openstack
- version/redhat openstack/10
- version/redhat openstack/13
- canonical/redhat virtualization
- version/redhat virtualization/4.0
- canonical/redhat enterprise linux
- version/redhat enterprise linux/7.0
- version/redhat enterprise linux/8.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/33
- vendor/siemens
- canonical/siemens simatic hmi unified comfort panels firmware
- canonical/siemens simatic hmi unified comfort panels
- canonical/siemens simatic net cp 1243-1 firmware
- canonical/siemens simatic net cp 1243-1
- canonical/siemens simatic net cp 1243-8 irc firmware
- canonical/siemens simatic net cp 1243-8 irc
- canonical/siemens simatic net cp 1542sp-1 firmware
- canonical/siemens simatic net cp 1542sp-1
- canonical/siemens simatic net cp 1542sp-1 irc firmware
- canonical/siemens simatic net cp 1542sp-1 irc
- canonical/siemens simatic net cp 1543-1 firmware
- canonical/siemens simatic net cp 1543-1
- canonical/siemens simatic net cp 1543sp-1 firmware
- canonical/siemens simatic net cp 1543sp-1
- canonical/siemens simatic net cp 1545-1 firmware
- canonical/siemens simatic net cp 1545-1
- canonical/siemens tim 1531 irc firmware
- canonical/siemens tim 1531 irc
- canonical/siemens sinumerik one firmware
- canonical/siemens sinumerik one