Ubuntu alert USN-7396-1 (ovn)
| From: | Marc Deslauriers <marc.deslauriers@canonical.com> | |
| To: | "ubuntu-security-announce@lists.ubuntu.com" <ubuntu-security-announce@lists.ubuntu.com> | |
| Subject: | [USN-7396-1] OVN vulnerability | |
| Date: | Mon, 31 Mar 2025 12:23:14 -0400 | |
| Message-ID: | <61d3de8f-7213-4873-8e29-85e9ecc969bc@canonical.com> |
========================================================================== Ubuntu Security Notice USN-7396-1 March 31, 2025 ovn vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: OVN would allow unintended access to the network. Software Description: - ovn: system to support virtual network abstraction Details: Marius Berntsberg, Trygve Vea, Tore Anderson, Rodolfo Alonso, Jay Faulkner, and Brian Haley discovered that OVN incorrectly handled certain crafted UDP packets. A remote attacker could possibly use this issue to bypass egress ACL rules. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.10 ovn-central 24.09.0-1ubuntu0.1 ovn-common 24.09.0-1ubuntu0.1 ovn-docker 24.09.0-1ubuntu0.1 ovn-host 24.09.0-1ubuntu0.1 ovn-ic 24.09.0-1ubuntu0.1 Ubuntu 24.04 LTS ovn-central 24.03.2-0ubuntu0.24.04.2 ovn-common 24.03.2-0ubuntu0.24.04.2 ovn-docker 24.03.2-0ubuntu0.24.04.2 ovn-host 24.03.2-0ubuntu0.24.04.2 ovn-ic 24.03.2-0ubuntu0.24.04.2 Ubuntu 22.04 LTS ovn-central 22.03.3-0ubuntu0.22.04.5 ovn-common 22.03.3-0ubuntu0.22.04.5 ovn-docker 22.03.3-0ubuntu0.22.04.5 ovn-host 22.03.3-0ubuntu0.22.04.5 ovn-ic 22.03.3-0ubuntu0.22.04.5 Ubuntu 20.04 LTS ovn-central 20.03.2-0ubuntu0.20.04.6 ovn-common 20.03.2-0ubuntu0.20.04.6 ovn-docker 20.03.2-0ubuntu0.20.04.6 ovn-host 20.03.2-0ubuntu0.20.04.6 ovn-ic 20.03.2-0ubuntu0.20.04.6 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7396-1 CVE-2025-0650 Package Information: https://launchpad.net/ubuntu/+source/ovn/24.09.0-1ubuntu0.1 https://launchpad.net/ubuntu/+source/ovn/24.03.2-0ubuntu0... https://launchpad.net/ubuntu/+source/ovn/22.03.3-0ubuntu0... https://launchpad.net/ubuntu/+source/ovn/20.03.2-0ubuntu0...
Attachment: OpenPGP_signature.asc (type=application/pgp-signature)
-----BEGIN PGP SIGNATURE----- wsF5BAABCAAjFiEEUMSg3c8x5FLOsZtRZWnYVadEvpMFAmfqwXIFAwAAAAAACgkQZWnYVadEvpMs pg//SZ5PZ/KKtEQLxxJ6E3tqJ2wrAqVtSKP9zWvOhKKd3QRFvnVfHq5+sdPr7R1tDVEsooc+ZMzT MAoyAqVs9Ocwk0nPIRvXwQ4iKQ+lNhCBbBL2+IE5Qot1aXrLT/Hay6x138Lyssr7by1gxRomd2Kx Wd8XvBnjjpSX/Keh5N1zSVqmTdMn7fnsF99liIKddka1Owe4BSSnFpOTAwJqZIHyVC6vP3q2YY38 8yRB5lsZ4oE37vRrlfn6GHrin0DcwXNe/nKZJcli8vRoISHeTzaf3QveEp0dmZMIh9zaOG5wFcbb iKCoDm7DOa9vsVlkWDznM8X2ULJMxNOLksk4zRECdmijUgauXyW+pUZcU6UOL9HzH4XXlh4DmF/h mYzjYM/z66P63zrXIQiuRPAJhiBlpJpYDRxiQCw+u510NC/MgQoNwE1tbNWzvWddle5D38BqsWw2 syf8Y5cPTZTGUWeWvZeLwg9Y2AWFYPN4+A6fX+4d1mZ8GUc3MkglJAefy0g3lDMD+hy4zpMB/E4p UxZt8rVXAIlNlQzxmSNtLAvQvzc4a13c5eMZEyd0hTp6NnxxIAgYKMfUqgMnJ+8x4ZmY5Gv2UXa4 UNEQ2XmSEVkBBuoGAZhupjWriqc1De/t1aOaB7wVlNw2Ha1iJS86yPFRAsY9h6k6KcnjI1tCeK2B 02w= =WO9/ -----END PGP SIGNATURE-----
Attachment: None (type=text/plain)