This bug was fixed in the package openvswitch - 2.13.1-0ubuntu0.20.04.3
---------------
openvswitch (2.13.1-0ubuntu0.20.04.3) focal-security; urgency=medium
* SECURITY UPDATE: buffer overflow decoding malformed packets in lldp
- debian/patches/CVE-2015-8011.patch: check lengths in lib/lldp/lldp.c.
- CVE-2015-8011
* SECURITY UPDATE: Externally triggered memory leak in lldp
- debian/patches/CVE-2020-27827.patch: properly free memory in
lib/lldp/lldp.c.
- CVE-2020-27827
-- Marc Deslauriers <[email protected]> Fri, 08 Jan 2021
07:29:51 -0500
** Changed in: openvswitch (Ubuntu Focal)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1906280
Title:
[SRU] Add support for disabling mlockall() calls in ovs-vswitchd
To manage notifications about this bug go to:
https://bugs.launchpad.net/charm-neutron-openvswitch/+bug/1906280/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
