- Issued:
- 2020-04-14
- Updated:
- 2020-04-14
RHBA-2020:1458 - Bug Fix Advisory
Synopsis
ovn2.11 bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for ovn2.11 is now available in the Fast Datapath channel of Red Hat Enterprise Linux 7.
Description
OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add native support for virtual network abstractions, such as virtual L2 and L3 overlays and security groups.
Bug fix(es) and Enhancement(s):
- [OVN] some icmp packets are passing through controller when pinging VM FIP in DVR environment (BZ#1788193)
- [OVN 2.11][FDP20.B] QoS Max bandwidth limit doesn't work in combination with DVR (BZ#1797873)
- [OVN] MAC anti-spoof filtering still works if port_security is disabled (BZ#1805709)
- OVN is not adhering to DHCP Broadcast Bit in DHCPDISCOVER and sending only unicast DHCPOFFER (BZ#1811119)
- Health check for load balancer is broken if ACLs are defined (BZ#1813050)
- [OVN] ARP requests not forwarded to chassis owning the logical port behind FIP in DVR scenarios. (BZ#1816620)
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Enterprise Linux Fast Datapath 7 x86_64
- Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 7 ppc64le
- Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 7 s390x
Fixes
- BZ - 1788193 - [OVN] some icmp packets are passing through controller when pinging VM FIP in DVR environment
- BZ - 1797873 - [OVN 2.11][FDP20.B] QoS Max bandwidth limit doesn't work in combination with DVR
- BZ - 1805709 - [OVN] MAC anti-spoof filtering still works if port_security is disabled
- BZ - 1811119 - OVN is not adhering to DHCP Broadcast Bit in DHCPDISCOVER and sending only unicast DHCPOFFER
- BZ - 1813050 - Health check for load balancer is broken if ACLs are defined
- BZ - 1816620 - [OVN] ARP requests not forwarded to chassis owning the logical port behind FIP in DVR scenarios.
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Fast Datapath 7
| SRPM | |
|---|---|
| ovn2.11-2.11.1-39.el7fdp.src.rpm | SHA-256: 6061a08a1677e690f9353e6cc8a395ba094cef3ccfd8ae3f91824cb16f98cabf |
| x86_64 | |
| ovn2.11-2.11.1-39.el7fdp.x86_64.rpm | SHA-256: e4251257e9fe1a7799d37d67277cdf2643ab8f1b73b31a4793c779da8440554d |
| ovn2.11-central-2.11.1-39.el7fdp.x86_64.rpm | SHA-256: 2c224f406d3a902b86a267c7c7b7dd7db7d14009a9f4bda8dad962d97609dcc4 |
| ovn2.11-debuginfo-2.11.1-39.el7fdp.x86_64.rpm | SHA-256: f34140d367994f71c569695735a8ae1d7a2d9d14f9c2ac16382ee5e1825f2d71 |
| ovn2.11-host-2.11.1-39.el7fdp.x86_64.rpm | SHA-256: 37de5e6dcca06b3e66e5d074a083c92655e31f97153e4343593e6d2adf670ebb |
| ovn2.11-vtep-2.11.1-39.el7fdp.x86_64.rpm | SHA-256: cb8396e9e91208db03144f63ea1e3cb0f3942520e71c4b33fdd31aa642648d00 |
Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 7
| SRPM | |
|---|---|
| ovn2.11-2.11.1-39.el7fdp.src.rpm | SHA-256: 6061a08a1677e690f9353e6cc8a395ba094cef3ccfd8ae3f91824cb16f98cabf |
| ppc64le | |
| ovn2.11-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 7d7174b09b4e772e90e7b31766654ab9c318d5c8b2460762d6306d554e82a445 |
| ovn2.11-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 7d7174b09b4e772e90e7b31766654ab9c318d5c8b2460762d6306d554e82a445 |
| ovn2.11-central-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 58fe1945712debc7273ece1c11aea2d25fdd1c3dd1542aae75be85c1bf20f7ac |
| ovn2.11-central-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 58fe1945712debc7273ece1c11aea2d25fdd1c3dd1542aae75be85c1bf20f7ac |
| ovn2.11-debuginfo-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: f1f7c2823d252a65b42828470e555825e93129545b02b2ce1e662efd69f54e55 |
| ovn2.11-debuginfo-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: f1f7c2823d252a65b42828470e555825e93129545b02b2ce1e662efd69f54e55 |
| ovn2.11-host-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 94cd2cc3bb113d4eaaa9235afe8a0d77b4bf0fbdec41503ca2d4a9555967312b |
| ovn2.11-host-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 94cd2cc3bb113d4eaaa9235afe8a0d77b4bf0fbdec41503ca2d4a9555967312b |
| ovn2.11-vtep-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 01db3a34a43cb8e5250f8969e1cccada7bda3a8db47cd62e567af6369f6547af |
| ovn2.11-vtep-2.11.1-39.el7fdp.ppc64le.rpm | SHA-256: 01db3a34a43cb8e5250f8969e1cccada7bda3a8db47cd62e567af6369f6547af |
Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 7
| SRPM | |
|---|---|
| ovn2.11-2.11.1-39.el7fdp.src.rpm | SHA-256: 6061a08a1677e690f9353e6cc8a395ba094cef3ccfd8ae3f91824cb16f98cabf |
| s390x | |
| ovn2.11-2.11.1-39.el7fdp.s390x.rpm | SHA-256: 59951160577987580e083bf7008fffb18c7c2dd490e5faf726af0bb46717fee2 |
| ovn2.11-central-2.11.1-39.el7fdp.s390x.rpm | SHA-256: 42eded1a25cf81c5fd83811876fa4a55251318b84882b78326a07bfb058dcc2e |
| ovn2.11-debuginfo-2.11.1-39.el7fdp.s390x.rpm | SHA-256: a58a3f2f673245240d0fcf92e170f628d0ae0841acc417f2ba5206a3cc1790d6 |
| ovn2.11-host-2.11.1-39.el7fdp.s390x.rpm | SHA-256: 403c757d61e3096778f87bce4ebada6efa5e64045870b342820ac12040ff4ef2 |
| ovn2.11-vtep-2.11.1-39.el7fdp.s390x.rpm | SHA-256: ab1a5b1cb0aa463f2e7222af5cd301988ae39fd813d15ed8ebb89726b374e5b9 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
