** Description changed: [Impact] This release sports mostly bug-fixes and we would like to make sure all of our supported customers have access to these improvements. The update contains the following package updates: * ovn 26.03.1 For more details see: * https://github.com/ovn-org/ovn/releases/tag/v26.03.1 * https://github.com/ovn-org/ovn/compare/v26.03.0...v26.03.1 [Test Case] The following SRU process was followed: https://wiki.ubuntu.com/OpenStack/StableReleaseUpdates In order to avoid regression of existing consumers, the OpenStack team will run their continuous integration test against the packages that are in -proposed. A successful run of all available tests will be required before the proposed packages can be let into -updates. The OpenStack team will be in charge of attaching the output summary of the executed tests. The OpenStack team members will not mark ‘verification-done’ until this has happened. [Regression Potential] In order to mitigate the regression potential, the results of the aforementioned tests are attached to this bug. [Other Info] This is a regular update, following a previous OVN point release: * (#2044491) [SRU] ovn 22.09.3 point release + This release fixes the following CVEs "CVE-2026-5265", "CVE-2026-5367" + as they were fixed upstream as part of OVN 26.03.1 + Changelog: * New upstream point release 26.03.1 (LP: #2154315). + * Fix security issues (Closes: #1134486): + - CVE-2026-5265: Heap Over-Read in ICMP Error Response Generation. + - CVE-2026-5367: Heap over-read in OVN DHCPv6 Client ID processing. * d/t: Drop skip for "Unsupported protocol message" test (LP: #2147468).
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2154315 Title: [SRU] ovn 26.03.1 point release To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ovn/+bug/2154315/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
