RedHat: RHSA-2020-2296-01 Moderate: openvswitch2.11 Security Issues
red hat
May 26, 2020
An update for openvswitch2.11 is now available for Fast Datapath for Red Hat Enterprise Linux 7
Solution
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
Summary
Open vSwitch provides standard network bridging functions and support for
the OpenFlow protocol for remote per-flow control of traffic.
Security Fix(es):
* dpdk: librte_vhost Interger overflow in vhost_user_set_log_base()
(CVE-2020-10722)
* dpdk: librte_vhost Integer truncation in
vhost_user_check_and_alloc_queue_pair() (CVE-2020-10723)
* dpdk: librte_vhost Missing inputs validation in Vhost-crypto
(CVE-2020-10724)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Bug Fix(es):
* [RHEL7] Update OVS 2.11 to last branch-2.11 commit and DPDK 18.11.7
(BZ#1822653)
* [RHEL7] ingress qdisc gets removed (BZ#1826826)
Topics Covered
References
https://access.redhat.com/security/cve/CVE-2020-10722 https://access.redhat.com/security/cve/CVE-2020-10723 https://access.redhat.com/security/cve/CVE-2020-10724 https://access.redhat.com/security/updates/classification/#moderate
Package List
Fast Datapath for Red Hat Enterprise Linux 7:
Source:
openvswitch2.11-2.11.0-54.20200327gita4efc59.el7fdp.src.rpm
noarch:
openvswitch2.11-test-2.11.0-54.20200327gita4efc59.el7fdp.noarch.rpm
ppc64le:
openvswitch2.11-2.11.0-54.20200327gita4efc59.el7fdp.ppc64le.rpm
openvswitch2.11-debuginfo-2.11.0-54.20200327gita4efc59.el7fdp.ppc64le.rpm
openvswitch2.11-devel-2.11.0-54.20200327gita4efc59.el7fdp.ppc64le.rpm
python-openvswitch2.11-2.11.0-54.20200327gita4efc59.el7fdp.ppc64le.rpm
s390x:
openvswitch2.11-2.11.0-54.20200327gita4efc59.el7fdp.s390x.rpm
openvswitch2.11-debuginfo-2.11.0-54.20200327gita4efc59.el7fdp.s390x.rpm
openvswitch2.11-devel-2.11.0-54.20200327gita4efc59.el7fdp.s390x.rpm
python-openvswitch2.11-2.11.0-54.20200327gita4efc59.el7fdp.s390x.rpm
x86_64:
openvswitch2.11-2.11.0-54.20200327gita4efc59.el7fdp.x86_64.rpm
openvswitch2.11-debuginfo-2.11.0-54.20200327gita4efc59.el7fdp.x86_64.rpm
openvswitch2.11-devel-2.11.0-54.20200327gita4efc59.el7fdp.x86_64.rpm
python-openvswitch2.11-2.11.0-54.20200327gita4efc59.el7fdp.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
PREVIOUS
NEXT
Advisory ID: RHSA-2020:2296-01
Product: Fast Datapath
Advisory URL: https://access.redhat.com/errata/RHSA-2020:2296
Issue date: 2020-05-26
Topic
An update for openvswitch2.11 is now available for Fast Datapath for RedHat Enterprise Linux 7.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.
Topics Covered
Relevant Releases Architectures
Fast Datapath for Red Hat Enterprise Linux 7 - noarch, ppc64le, s390x, x86_64
Bugs Fixed
1822653 - [RHEL7] Update OVS 2.11 to last branch-2.11 commit and DPDK 18.11.7
1828867 - CVE-2020-10722 dpdk: librte_vhost Interger overflow in vhost_user_set_log_base()
1828874 - CVE-2020-10723 dpdk: librte_vhost Integer truncation in vhost_user_check_and_alloc_queue_pair()
1828884 - CVE-2020-10724 dpdk: librte_vhost Missing inputs validation in Vhost-crypto
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!