Issued:: 2021-06-16
Updated:: 2021-06-16

RHSA-2021:2456 - Security Advisory

Overview
Updated Packages

Synopsis

Important: Red Hat OpenStack Platform 13.0 (openvswitch2.11) security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for openvswitch2.11 is now available for Red Hat OpenStack
Platform 13 (Queens).

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

Description

Open vSwitch provides standard network bridging functions and support for
the OpenFlow protocol for remote per-flow control of traffic.

Security Fix(es):

limitation in the OVS packet parsing in userspace leads to DoS

(CVE-2020-35498)

denial of service via externally triggered memory leak (CVE-2020-27827)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.

Solution

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat OpenStack for IBM Power 13 ppc64le
Red Hat OpenStack 13 x86_64

Fixes

BZ - 1908845 - CVE-2020-35498 openvswitch: limitation in the OVS packet parsing in userspace leads to DoS
BZ - 1921438 - CVE-2020-27827 lldp/openvswitch: denial of service via externally triggered memory leak
BZ - 1928901 - Include latest FDP release in RHOSP 13z16

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat OpenStack for IBM Power 13

SRPM
openvswitch2.11-2.11.3-86.el7fdp.src.rpm	SHA-256: 0f1c007c4cf5c222fb1c3bdc66c607e3cadf0e83894cd6cb50ba2ce149666214
ppc64le
openvswitch2.11-2.11.3-86.el7fdp.ppc64le.rpm	SHA-256: df7d58fce595a878d6f52c0e68d75fdc1fb70f63b71497c0478fc1cb19d5b712
openvswitch2.11-debuginfo-2.11.3-86.el7fdp.ppc64le.rpm	SHA-256: a68dc4a0783460b6173a57fcba2b721ce29467199571ae50adeb538539aeef02
openvswitch2.11-devel-2.11.3-86.el7fdp.ppc64le.rpm	SHA-256: 377c6df62fe827813f3860e5e8a2e100ad7e7b1126a915af5651c54a94f6267a
openvswitch2.11-test-2.11.3-86.el7fdp.noarch.rpm	SHA-256: ab86456a6c89865646940594a5beefade03d0ff00860034171c8e8479062d7f0
python-openvswitch2.11-2.11.3-86.el7fdp.ppc64le.rpm	SHA-256: d32e63006b37eaee894d1a19c10ad99e8e8bc20de1a1eaff0197d604aea14002

Red Hat OpenStack 13

SRPM
openvswitch2.11-2.11.3-86.el7fdp.src.rpm	SHA-256: 0f1c007c4cf5c222fb1c3bdc66c607e3cadf0e83894cd6cb50ba2ce149666214
x86_64
openvswitch2.11-2.11.3-86.el7fdp.x86_64.rpm	SHA-256: 314d719d843cbe4c74a65e19e6bfb27f5d520b470eb501cb8352d75c24465fe6
openvswitch2.11-debuginfo-2.11.3-86.el7fdp.x86_64.rpm	SHA-256: 81540ea0b5240495e64fc5b0fa534a479077c53a46ebca4348bf9d09ebee9b55
openvswitch2.11-devel-2.11.3-86.el7fdp.x86_64.rpm	SHA-256: 5858f917c2eb5c9c6e70177a1929225c1f88019d21005d83728b061d0824f712
openvswitch2.11-test-2.11.3-86.el7fdp.noarch.rpm	SHA-256: ab86456a6c89865646940594a5beefade03d0ff00860034171c8e8479062d7f0
python-openvswitch2.11-2.11.3-86.el7fdp.x86_64.rpm	SHA-256: 0c739e7402a5c388f19354a1386ff8243355dfa231947a30d4abe36dce7989c3

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation