[SECURITY] Fedora 39 Update: ovn-23.09.0-139.fc39 - package-announce - Fedora mailing-lists

21 Mar 2024


      --------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-082155d6b7
2024-03-22 01:15:00.283802
--------------------------------------------------------------------------------
Name        : ovn
Product     : Fedora 39
Version     : 23.09.0
Release     : 139.fc39
URL         : http://www.openvswitch.org/
Summary     : Open Virtual Network support
Description :
OVN, the Open Virtual Network, is a system to support virtual network
abstraction.  OVN complements the existing capabilities of OVS to add
native support for virtual network abstractions, such as virtual L2 and L3
overlays and security groups.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2024-2182 ovn: insufficient validation of BFD packets may
lead to denial of service [fedora-all]
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 13 2024 Numan Siddique numans@ovn.org - 23.09.0-139
- github: Reduce ASLR entropy to be compatible with asan in llvm 14.
[Upstream: 835b43811dfcf469da3123911240cc953b52bac3]
- Prepare for 23.09.4.
[Upstream: 5ce1740aaa02ebeed561ffb6298b71035b5c908a]
- Set release date for 23.09.3.
[Upstream: fbdc94d4309f28ad59e41025ff42945478dd12cc]
- controller: Set check_tnl_key for BFD on tunnel ifaces.
[Upstream: c966c35f1b1cd8c5351ccac3051843fbf765c2ae]
- tests: Skip EDNS test if the scapy version doesn't support it.
[Upstream: 7af89a5e50a4ba75a3ea5c393499f1e0fa0a6abb]
- northd: Don't skip the unSNAT stage for traffic towards VIPs.
[Upstream: 094b1217345a8ae5935fdd4dfec4949f46197377]
- Prepare for 23.09.3.
[Upstream: 7bd52d7a25f2ddad0be25a5e54a3eb63d98a19d8]
- Set release date for 23.09.2.
[Upstream: 04b23938302ad54f453f622a4b0c2fa5e27d3e41]
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2267840 - CVE-2024-2182 ovn: insufficient validation of BFD packets may lead to denial of service
        https://bugzilla.redhat.com/show_bug.cgi?id=2267840
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-082155d6b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------