Open vSwitch: Multiple Vulnerabilities — GLSA 202311-16

Multiple denial of service vulnerabilites have been found in Open vSwitch.

Affected packages

Background

Open vSwitch is a production quality multilayer virtual switch.

Description

Multiple vulnerabilities have been discovered in Open vSwitch. Please review the CVE identifiers referenced below for details.

Impact

Please review the referenced CVE identifiers for details.

Workaround

There is no known workaround at this time.

Resolution

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-misc/openvswitch-2.17.6"
 

References

• CVE-2020-27827
• CVE-2020-35498
• CVE-2021-3905
• CVE-2021-36980
• CVE-2022-4337
• CVE-2022-4338
• CVE-2023-1668

Release date
November 26, 2023

Latest revision
November 26, 2023: 1

Severity
low

Exploitable
remote

Bugzilla entries

• 765346
• 769995
• 803107
• 887561