RHSA-2021:0931: Important: openvswitch2.11 and ovn2.11 security update

First published: Thu Mar 18 2021(Updated: )

Open vSwitch provides standard network bridging functions and support for<br>the OpenFlow protocol for remote per-flow control of traffic.<br>OVN, the Open Virtual Network, is a system to support virtual network<br>abstraction. OVN complements the existing capabilities of OVS to add native support for virtual network abstractions, such as virtual L2 and L3 overlays and security groups.<br>Security Fix(es):<br><li> buffer overflow in the lldp_decode function in daemon/protocols/lldp.c</li> (CVE-2015-8011)<br><li> librte_vhost Integer overflow in vhost_user_set_log_base()</li> (CVE-2020-10722)<br><li> librte_vhost Integer truncation in</li> vhost_user_check_and_alloc_queue_pair() (CVE-2020-10723)<br><li> librte_vhost Missing inputs validation in Vhost-crypto (CVE-2020-10724)</li> For more details about the security issue(s), including the impact, a CVSS<br>score, acknowledgments, and other related information, refer to the CVE<br>page listed in the References section.

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/description
• agent/event
• agent/first-publish-date
• agent/last-modified-date
• agent/references
• agent/remedy
• agent/severity
• agent/softwarecombine
• agent/tags
• agent/title
• agent/type
• agent/weakness
• collector/redhat-errata
• source/Red Hat
• anchor-id/RHSA-2021:0931
• agent/software-canonical-lookup
• package-manager/redhat