[SECURITY] [DSA 5319-1] openvswitch security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5319-1] openvswitch security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Fri, 13 Jan 2023 19:23:15 +0000
Message-id: <[🔎] Y8GvozCV7xS07dhu@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5319-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
January 13, 2023                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openvswitch
CVE ID         : CVE-2022-4337 CVE-2022-4338
Debian Bug     : 1027273

Two vulnerabilities were discovered in the LLPD implementation of Open
vSwitch, software-based Ethernet virtual switch, which could result in
denial of service.

For the stable distribution (bullseye), these problems have been fixed in
version 2.15.0+ds1-2+deb11u2.

We recommend that you upgrade your openvswitch packages.

For the detailed security status of openvswitch please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/openvswitch

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=a4Zt
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5318-1] lava security update
Next by Date: [SECURITY] [DSA 5320-1] tor security update
Previous by thread: [SECURITY] [DSA 5318-1] lava security update
Next by thread: [SECURITY] [DSA 5320-1] tor security update
Index(es):
- Date
- Thread