| Release | Version |
|---|---|
| stretch | 2.6.2~pre+git20161223-3 |
| stretch (security) | 2.6.10-0+deb9u1 |
| buster | 2.10.0+2018.08.28+git.8ca7c82b7d+ds1-12+deb10u2 |
| buster (security) | 2.10.7+ds1-0+deb10u1 |
| bullseye | 2.15.0+ds1-2 |
| bookworm | 2.15.0+ds1-8 |
| sid | 2.15.0+ds1-8 |
| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2021-36980 | fixed | fixed | vulnerable (no DSA) | vulnerable | vulnerable | Open vSwitch (aka openvswitch) 2.11.0 through 2.15.0 has a use-after-f ... |
| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2017-14970 | vulnerable | fixed | fixed | fixed | fixed | In lib/ofp-util.c in Open vSwitch (OvS) before 2.8.1, there are multip ... |
| CVE-2017-9265 | vulnerable | fixed | fixed | fixed | fixed | In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsin ... |
| CVE-2017-9264 | vulnerable | fixed | fixed | fixed | fixed | In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS ... |
| CVE-2017-9263 | vulnerable | fixed | fixed | fixed | fixed | In Open vSwitch (OvS) 2.7.0, while parsing an OpenFlow role status mes ... |
| Bug | Description |
|---|---|
| CVE-2020-35498 | A vulnerability was found in openvswitch. A limitation in the implemen ... |
| CVE-2020-27827 | A flaw was found in multiple versions of OpenvSwitch. Specially crafte ... |
| CVE-2018-17206 | An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6. The ... |
| CVE-2018-17205 | An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, aff ... |
| CVE-2018-17204 | An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, aff ... |
| CVE-2017-9214 | In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_RE ... |
| CVE-2016-10377 | In Open vSwitch (OvS) 2.5.0, a malformed IP packet can cause the switc ... |
| CVE-2016-2074 | Buffer overflow in lib/flow.c in ovs-vswitchd in Open vSwitch 2.2.x an ... |
| CVE-2015-8011 | Buffer overflow in the lldp_decode function in daemon/protocols/lldp.c ... |
| CVE-2012-3449 | Open vSwitch 1.4.2 uses world writable permissions for (1) /var/lib/op ... |
| DSA / DLA | Description |
|---|---|
| DLA-2571-1 | openvswitch - security update |
| DSA-4852-1 | openvswitch - security update |
| DSA-4836-1 | openvswitch - security update |
| DSA-3533-1 | openvswitch - security update |