Vulnerability-Lookup

CVE-2023-3966 (GCVE-0-2023-3966)

Vulnerability from cvelistv5 – Published: 2024-02-22 12:15 – Updated: 2025-02-13 17:03

Title

Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet

Summary

A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-248 - Uncaught Exception

Assigner

redhat

References

4 references

URL	Tags
https://access.redhat.com/security/cve/CVE-2023-3966	vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2178363	issue-trackingx_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…

Impacted products

8 products

Vendor	Product	Version
n/a	openvswitch	Unaffected: 3.1.0
Red Hat	Fast Datapath for RHEL 7	cpe:/o:redhat:enterprise_linux:7::fastdatapath
Red Hat	Fast Datapath for RHEL 8	cpe:/o:redhat:enterprise_linux:8::fastdatapath
Red Hat	Fast Datapath for RHEL 9	cpe:/o:redhat:enterprise_linux:9::fastdatapath
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat OpenShift Container Platform 3.11	cpe:/a:redhat:openshift:3.11
RDO	OpenStack RDO
Fedora	Fedora

Date Public

2024-02-08 00:00

Credits

This issue was discovered by Haresh Khandelwal (Red Hat) and Timothy Redaelli (Red Hat).

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-3966",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-22T15:42:09.680379Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-26T18:14:22.101Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T07:08:50.792Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-3966"
          },
          {
            "name": "RHBZ#2178363",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178363"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "openvswitch",
          "vendor": "n/a",
          "versions": [
            {
              "status": "unaffected",
              "version": "3.1.0"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch",
          "product": "Fast Datapath for RHEL 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::fastdatapath"
          ],
          "defaultStatus": "unknown",
          "packageName": "openvswitch2.10",
          "product": "Fast Datapath for RHEL 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::fastdatapath"
          ],
          "defaultStatus": "unknown",
          "packageName": "openvswitch2.11",
          "product": "Fast Datapath for RHEL 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::fastdatapath"
          ],
          "defaultStatus": "unknown",
          "packageName": "openvswitch2.12",
          "product": "Fast Datapath for RHEL 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch2.13",
          "product": "Fast Datapath for RHEL 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
          ],
          "defaultStatus": "unknown",
          "packageName": "openvswitch2.11",
          "product": "Fast Datapath for RHEL 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
          ],
          "defaultStatus": "unknown",
          "packageName": "openvswitch2.12",
          "product": "Fast Datapath for RHEL 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch2.13",
          "product": "Fast Datapath for RHEL 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch2.15",
          "product": "Fast Datapath for RHEL 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
          ],
          "defaultStatus": "unknown",
          "packageName": "openvswitch2.16",
          "product": "Fast Datapath for RHEL 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch2.17",
          "product": "Fast Datapath for RHEL 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch3.1",
          "product": "Fast Datapath for RHEL 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch2.17",
          "product": "Fast Datapath for RHEL 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9::fastdatapath"
          ],
          "defaultStatus": "unknown",
          "packageName": "openvswitch3.0",
          "product": "Fast Datapath for RHEL 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch3.1",
          "product": "Fast Datapath for RHEL 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9::fastdatapath"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch3.2",
          "product": "Fast Datapath for RHEL 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "affected",
          "packageName": "openvswitch",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:openshift:3.11"
          ],
          "defaultStatus": "unaffected",
          "packageName": "openvswitch-ovn-kubernetes",
          "product": "Red Hat OpenShift Container Platform 3.11",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://repos.fedorapeople.org/repos/openstack/",
          "defaultStatus": "affected",
          "packageName": "rdo-openvswitch",
          "product": "OpenStack RDO",
          "vendor": "RDO"
        },
        {
          "collectionURL": "https://packages.fedoraproject.org/",
          "defaultStatus": "affected",
          "packageName": "openvswitch",
          "product": "Fedora",
          "vendor": "Fedora"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "This issue was discovered by Haresh Khandelwal (Red Hat) and Timothy Redaelli (Red Hat)."
        }
      ],
      "datePublic": "2024-02-08T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Important"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-248",
              "description": "Uncaught Exception",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-03-23T02:06:40.529Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2023-3966"
        },
        {
          "name": "RHBZ#2178363",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178363"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2023-03-14T00:00:00.000Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-02-08T00:00:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet",
      "x_redhatCweChain": "CWE-248: Uncaught Exception"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2023-3966",
    "datePublished": "2024-02-22T12:15:53.128Z",
    "dateReserved": "2023-07-26T23:16:24.169Z",
    "dateUpdated": "2025-02-13T17:03:14.623Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-3966",
      "date": "2026-06-11",
      "epss": "0.00045",
      "percentile": "0.14095"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 una falla en Open vSwitch donde varias versiones son vulnerables a paquetes Geneve manipulados, lo que puede resultar en una denegaci\\u00f3n de servicio y accesos a memoria no v\\u00e1lidos. Para desencadenar este problema es necesario que la descarga de hardware a trav\\u00e9s de la ruta de enlace de red est\\u00e9 habilitada.\"}]",
      "id": "CVE-2023-3966",
      "lastModified": "2024-11-21T08:18:25.007",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}",
      "published": "2024-02-22T13:15:07.770",
      "references": "[{\"url\": \"https://access.redhat.com/security/cve/CVE-2023-3966\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2178363\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-3966\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2178363\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-248\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-3966\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-02-22T13:15:07.770\",\"lastModified\":\"2025-05-16T14:17:01.290\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla en Open vSwitch donde varias versiones son vulnerables a paquetes Geneve manipulados, lo que puede resultar en una denegaci\u00f3n de servicio y accesos a memoria no v\u00e1lidos. Para desencadenar este problema es necesario que la descarga de hardware a trav\u00e9s de la ruta de enlace de red est\u00e9 habilitada.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-248\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvswitch:openvswitch:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.1.0\",\"matchCriteriaId\":\"9237AD53-749F-4A2B-9D35-EFF735E172D6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA277A6C-83EC-4536-9125-97B84C4FAF59\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-3966\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2178363\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-3966\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2178363\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2023-3966\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2178363\", \"name\": \"RHBZ#2178363\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T07:08:50.792Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-3966\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-02-22T15:42:09.680379Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-26T18:14:19.309Z\"}}], \"cna\": {\"title\": \"Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet\", \"credits\": [{\"lang\": \"en\", \"value\": \"This issue was discovered by Haresh Khandelwal (Red Hat) and Timothy Redaelli (Red Hat).\"}], \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"n/a\", \"product\": \"openvswitch\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3.1.0\"}]}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 7\", \"packageName\": \"openvswitch\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 7\", \"packageName\": \"openvswitch2.10\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 7\", \"packageName\": \"openvswitch2.11\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 7\", \"packageName\": \"openvswitch2.12\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 7\", \"packageName\": \"openvswitch2.13\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 8\", \"packageName\": \"openvswitch2.11\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 8\", \"packageName\": \"openvswitch2.12\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 8\", \"packageName\": \"openvswitch2.13\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 8\", \"packageName\": \"openvswitch2.15\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 8\", \"packageName\": \"openvswitch2.16\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 8\", \"packageName\": \"openvswitch2.17\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 8\", \"packageName\": \"openvswitch3.1\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 9\", \"packageName\": \"openvswitch2.17\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 9\", \"packageName\": \"openvswitch3.0\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 9\", \"packageName\": \"openvswitch3.1\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 9\", \"packageName\": \"openvswitch3.2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"openvswitch\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:3.11\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 3.11\", \"packageName\": \"openvswitch-ovn-kubernetes\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"RDO\", \"product\": \"OpenStack RDO\", \"packageName\": \"rdo-openvswitch\", \"collectionURL\": \"https://repos.fedorapeople.org/repos/openstack/\", \"defaultStatus\": \"affected\"}, {\"vendor\": \"Fedora\", \"product\": \"Fedora\", \"packageName\": \"openvswitch\", \"collectionURL\": \"https://packages.fedoraproject.org/\", \"defaultStatus\": \"affected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2023-03-14T00:00:00+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-02-08T00:00:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-02-08T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2023-3966\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2178363\", \"name\": \"RHBZ#2178363\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYYUBF6OW2JG7VOFEOROHXGSJCTES3QO/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFZADABUDOFI2KZIRQBYFZCIKH55RGY3/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-248\", \"description\": \"Uncaught Exception\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2024-03-23T02:06:40.529Z\"}, \"x_redhatCweChain\": \"CWE-248: Uncaught Exception\"}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-3966\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T17:03:14.623Z\", \"dateReserved\": \"2023-07-26T23:16:24.169Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-02-22T12:15:53.128Z\", \"assignerShortName\": \"redhat\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

SUSE-SU-2026:20061-1

Vulnerability from csaf_suse - Published: 2026-01-08 14:43 - Updated: 2026-01-08 14:43

Summary

Security update for openvswitch

Severity

Important

Notes

Title of the patch: Security update for openvswitch

Description of the patch: This update for openvswitch fixes the following issues: Update OpenvSwitch to v3.1.7 and OVN to v23.03.3: Security issues fixed: - CVE-2023-3966: ovs: invalid memory access and potential denial of service via specially crafted Geneve packets (bsc#1219465). - CVE-2023-5366: ovs: OpenFlow rules may be bypassed via specially crafted ICMPv6 Neighbor Advertisement packets sent between virtual machines t(bsc#1216002). - CVE-2024-2182: ovn: denial of service via injection of specially crafted BFD packets from inside unprivileged workloads (bsc#1255435). - CVE-2025-0650: ovn: egress ACLs may be bypassed via specially crafted UDP packet (bsc#1236353). Other updates and bugfixes: - OpenvSwitch upstream bugfix updates: * https://www.openvswitch.org/releases/NEWS-3.1.7.txt * v3.1.7 - Bug fixes - OVS validated with DPDK 22.11.7. * v3.1.6 - Bug fixes - OVS validated with DPDK 22.11.6. * v3.1.5 - Bug fixes - OVS validated with DPDK 22.11.5. * v3.1.4 - Bug fixes - OVS validated with DPDK 22.11.4. - OVN upstream bugfix updates: * https://github.com/ovn-org/ovn/blob/branch-23.03/NEWS * v23.03.3 - Bug fixes - Add "garp-max-timeout-sec" config option to vswitchd external-ids to cap the time between when ovn-controller sends gARP packets. * v23.03.1 - Bug fixes - CT entries are not flushed by default anymore whenever a load balancer backend is removed. A new, per-LB, option 'ct_flush' can be used to restore the previous behavior. Disabled by default. - Always allow IPv6 Router Discovery, Neighbor Discovery, and Multicast Listener Discovery protocols, regardless of ACLs defined. - Send ICMP Fragmentation Needed packets back to offending ports when communicating with multichassis ports using frames that don't fit through a tunnel. This is done only for logical switches that are attached to a physical network via a localnet port, in which case multichassis ports may have an effective MTU different from regular ports and hence may need this mechanism to maintain connectivity with other peers in the network. - ECMP routes use L4_SYM dp-hash by default if the datapath supports it. Existing sessions might get re-hashed to a different ECMP path when OVN detects the algorithm support in the datapath during an upgrade or restart of ovn-controller.

Patchnames: SUSE-SLE-Micro-6.1-367

CVE-2023-3966

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-5366

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2024-2182

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2025-0650

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64	—	Vendor Fix

Threats

Impact important

References

20 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1216002	self
https://bugzilla.suse.com/1219465	self
https://bugzilla.suse.com/1236353	self
https://bugzilla.suse.com/1255435	self
https://www.suse.com/security/cve/CVE-2023-3966/	self
https://www.suse.com/security/cve/CVE-2023-5366/	self
https://www.suse.com/security/cve/CVE-2024-2182/	self
https://www.suse.com/security/cve/CVE-2025-0650/	self
https://www.suse.com/security/cve/CVE-2023-3966	external
https://bugzilla.suse.com/1219465	external
https://www.suse.com/security/cve/CVE-2023-5366	external
https://bugzilla.suse.com/1216002	external
https://www.suse.com/security/cve/CVE-2024-2182	external
https://bugzilla.suse.com/1255435	external
https://www.suse.com/security/cve/CVE-2025-0650	external
https://bugzilla.suse.com/1236353	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for openvswitch",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for openvswitch fixes the following issues:\n\nUpdate OpenvSwitch to v3.1.7 and OVN to v23.03.3:\n\nSecurity issues fixed:\n\n- CVE-2023-3966: ovs: invalid memory access and potential denial of service via specially crafted Geneve packets\n  (bsc#1219465).\n- CVE-2023-5366: ovs: OpenFlow rules may be bypassed via specially crafted ICMPv6 Neighbor Advertisement packets sent\n  between virtual machines t(bsc#1216002).\n- CVE-2024-2182: ovn: denial of service via injection of specially crafted BFD packets from inside unprivileged\n  workloads (bsc#1255435).\n- CVE-2025-0650: ovn: egress ACLs may be bypassed via specially crafted UDP packet (bsc#1236353).\n\nOther updates and bugfixes:\n\n- OpenvSwitch upstream bugfix updates:\n  * https://www.openvswitch.org/releases/NEWS-3.1.7.txt\n  * v3.1.7\n    - Bug fixes\n    - OVS validated with DPDK 22.11.7.\n  * v3.1.6\n    - Bug fixes\n    - OVS validated with DPDK 22.11.6.\n  * v3.1.5\n    - Bug fixes\n    - OVS validated with DPDK 22.11.5.\n  * v3.1.4\n    - Bug fixes\n    - OVS validated with DPDK 22.11.4.\n  \n- OVN upstream bugfix updates:\n  * https://github.com/ovn-org/ovn/blob/branch-23.03/NEWS\n  * v23.03.3\n    - Bug fixes\n    - Add \"garp-max-timeout-sec\" config option to vswitchd external-ids to cap the time between when ovn-controller\n      sends gARP packets.\n  * v23.03.1\n    - Bug fixes\n    - CT entries are not flushed by default anymore whenever a load balancer backend is removed.  A new, per-LB, option\n      \u0027ct_flush\u0027 can be used to restore the previous behavior. Disabled by default.\n    - Always allow IPv6 Router Discovery, Neighbor Discovery, and Multicast Listener Discovery protocols, regardless of\n      ACLs defined.\n    - Send ICMP Fragmentation Needed packets back to offending ports when communicating with multichassis ports using\n      frames that don\u0027t fit through a tunnel. This is done only for logical switches that are attached to a physical\n      network via a localnet port, in which case multichassis ports may have an effective MTU different from regular\n      ports and hence may need this mechanism to maintain connectivity with other peers in the network.\n    - ECMP routes use L4_SYM dp-hash by default if the datapath supports it. Existing sessions might get re-hashed to a\n      different ECMP path when OVN detects the algorithm support in the datapath during an upgrade or restart of\n      ovn-controller.\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Micro-6.1-367",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20061-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:20061-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620061-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:20061-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023750.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1216002",
        "url": "https://bugzilla.suse.com/1216002"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1219465",
        "url": "https://bugzilla.suse.com/1219465"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1236353",
        "url": "https://bugzilla.suse.com/1236353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1255435",
        "url": "https://bugzilla.suse.com/1255435"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-3966 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-3966/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-5366 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-5366/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-2182 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-2182/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-0650 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-0650/"
      }
    ],
    "title": "Security update for openvswitch",
    "tracking": {
      "current_release_date": "2026-01-08T14:43:50Z",
      "generator": {
        "date": "2026-01-08T14:43:50Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:20061-1",
      "initial_release_date": "2026-01-08T14:43:50Z",
      "revision_history": [
        {
          "date": "2026-01-08T14:43:50Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
                "product": {
                  "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
                  "product_id": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
                "product": {
                  "name": "openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
                  "product_id": "openvswitch-3.1.7-slfo.1.1_2.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
                "product": {
                  "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
                  "product_id": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
                "product": {
                  "name": "openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
                  "product_id": "openvswitch-3.1.7-slfo.1.1_2.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
                "product": {
                  "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
                  "product_id": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "openvswitch-3.1.7-slfo.1.1_2.1.s390x",
                "product": {
                  "name": "openvswitch-3.1.7-slfo.1.1_2.1.s390x",
                  "product_id": "openvswitch-3.1.7-slfo.1.1_2.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
                "product": {
                  "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
                  "product_id": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "openvswitch-3.1.7-slfo.1.1_2.1.x86_64",
                "product": {
                  "name": "openvswitch-3.1.7-slfo.1.1_2.1.x86_64",
                  "product_id": "openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Micro 6.1",
                "product": {
                  "name": "SUSE Linux Micro 6.1",
                  "product_id": "SUSE Linux Micro 6.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sl-micro:6.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64"
        },
        "product_reference": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le"
        },
        "product_reference": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x"
        },
        "product_reference": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64"
        },
        "product_reference": "libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openvswitch-3.1.7-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64"
        },
        "product_reference": "openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openvswitch-3.1.7-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le"
        },
        "product_reference": "openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openvswitch-3.1.7-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x"
        },
        "product_reference": "openvswitch-3.1.7-slfo.1.1_2.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openvswitch-3.1.7-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
        },
        "product_reference": "openvswitch-3.1.7-slfo.1.1_2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-3966",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-3966"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-3966",
          "url": "https://www.suse.com/security/cve/CVE-2023-3966"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219465 for CVE-2023-3966",
          "url": "https://bugzilla.suse.com/1219465"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-01-08T14:43:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-3966"
    },
    {
      "cve": "CVE-2023-5366",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-5366"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to arbitrary IP addresses.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-5366",
          "url": "https://www.suse.com/security/cve/CVE-2023-5366"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1216002 for CVE-2023-5366",
          "url": "https://bugzilla.suse.com/1216002"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-01-08T14:43:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-5366"
    },
    {
      "cve": "CVE-2024-2182",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-2182"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-2182",
          "url": "https://www.suse.com/security/cve/CVE-2024-2182"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1255435 for CVE-2024-2182",
          "url": "https://bugzilla.suse.com/1255435"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-01-08T14:43:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-2182"
    },
    {
      "cve": "CVE-2025-0650",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-0650"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations configured with a logical switch with DNS records set on it and if the same switch has any egress ACLs configured. This issue can lead to unauthorized access to virtual machines and containers running on the OVN network.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
          "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-0650",
          "url": "https://www.suse.com/security/cve/CVE-2025-0650"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1236353 for CVE-2025-0650",
          "url": "https://bugzilla.suse.com/1236353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:libopenvswitch-3_1-0-3.1.7-slfo.1.1_2.1.x86_64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.aarch64",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.ppc64le",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.s390x",
            "SUSE Linux Micro 6.1:openvswitch-3.1.7-slfo.1.1_2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-01-08T14:43:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-0650"
    }
  ]
}

WID-SEC-W-2024-0580

Vulnerability from csaf_certbund - Published: 2024-03-07 23:00 - Updated: 2024-03-24 23:00

Summary

Red Hat Enterprise Linux (openvswitch): Schwachstelle ermöglicht Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.

Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux in der openvswitch Komponente ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux

CVE-2023-3966

Es existiert eine Schwachstelle in Red Hat Enterprise Linux in der Komponente openvswitch, wenn "hardware offloading via the netlink path" aktiviert ist. Grund ist ein Fehler bei der Verarbeitung von nicht wohlgeformten "Geneve" Paketen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuführen.

Affected products

Known affected 4 products

Product	Identifier	Version
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Fast Datapath 8 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:fast_datapath_8`	Fast Datapath 8
Red Hat Enterprise Linux Fast Datapath 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:fast_datapath_9`	Fast Datapath 9
Red Hat Enterprise Linux Fast Datapath 7 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:fast_datapath_7`	Fast Datapath 7

References

7 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2024:1227	external
https://access.redhat.com/errata/RHSA-2024:1234	external
https://access.redhat.com/errata/RHSA-2024:1235	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux in der openvswitch Komponente ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0580 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0580.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0580 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0580"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2024-03-07",
        "url": "https://access.redhat.com/errata/RHSA-2024:1227"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2024-03-07",
        "url": "https://access.redhat.com/errata/RHSA-2024:1234"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2024-03-07",
        "url": "https://access.redhat.com/errata/RHSA-2024:1235"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0912-1 vom 2024-03-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018184.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0922-1 vom 2024-03-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018206.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat Enterprise Linux (openvswitch): Schwachstelle erm\u00f6glicht Denial of Service",
    "tracking": {
      "current_release_date": "2024-03-24T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:06:14.173+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-0580",
      "initial_release_date": "2024-03-07T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-03-07T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-03-17T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-24T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Fast Datapath 7",
                "product": {
                  "name": "Red Hat Enterprise Linux Fast Datapath 7",
                  "product_id": "T033320",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:fast_datapath_7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Fast Datapath 8",
                "product": {
                  "name": "Red Hat Enterprise Linux Fast Datapath 8",
                  "product_id": "T033321",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:fast_datapath_8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Fast Datapath 9",
                "product": {
                  "name": "Red Hat Enterprise Linux Fast Datapath 9",
                  "product_id": "T033322",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:fast_datapath_9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-3966",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Red Hat Enterprise Linux in der Komponente openvswitch, wenn \"hardware offloading via the netlink path\" aktiviert ist. Grund ist ein Fehler bei der Verarbeitung von nicht wohlgeformten \"Geneve\" Paketen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033321",
          "T033322",
          "T033320"
        ]
      },
      "release_date": "2024-03-07T23:00:00.000+00:00",
      "title": "CVE-2023-3966"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-3966 (GCVE-0-2023-3966)

SUSE-SU-2026:20061-1

WID-SEC-W-2024-0580

Tags

Sightings

Nomenclature