Headline
Red Hat Security Advisory 2022-4786-01
Red Hat Security Advisory 2022-4786-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and out of bounds read vulnerabilities.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Moderate: openvswitch2.13 security update
Advisory ID: RHSA-2022:4786-01
Product: Fast Datapath
Advisory URL: https://access.redhat.com/errata/RHSA-2022:4786
Issue date: 2022-05-27
CVE Names: CVE-2021-3839 CVE-2022-0669
=====================================================================
- Summary:
An update for openvswitch2.13 is now available in Fast Datapath for Red Hat
Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
- Relevant releases/architectures:
Fast Datapath for Red Hat Enterprise Linux 8 - aarch64, noarch, ppc64le, s390x, x86_64
- Description:
Open vSwitch provides standard network bridging functions and support for
the OpenFlow protocol for remote per-flow control of traffic.
Security Fix(es):
openvswitch2.13: DPDK: Out-of-bounds read/write in
vhost_user_set_inflight_fd() may lead to crash (CVE-2021-3839)openvswitch2.13: DPDK: Sending vhost-user-inflight type messages could
lead to DoS (CVE-2022-0669)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
- Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
Users of openvswitch2.13 are advised to upgrade to these updated packages,
which fix these bugs.
- Bugs fixed (https://bugzilla.redhat.com/):
2025882 - CVE-2021-3839 DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash
2055793 - CVE-2022-0669 dpdk: sending vhost-user-inflight type messages could lead to DoS
2080270 - [22.D RHEL-8] Fast Datapath Release
- Package List:
Fast Datapath for Red Hat Enterprise Linux 8:
Source:
openvswitch2.13-2.13.0-180.el8fdp.src.rpm
aarch64:
network-scripts-openvswitch2.13-2.13.0-180.el8fdp.aarch64.rpm
openvswitch2.13-2.13.0-180.el8fdp.aarch64.rpm
openvswitch2.13-debuginfo-2.13.0-180.el8fdp.aarch64.rpm
openvswitch2.13-debugsource-2.13.0-180.el8fdp.aarch64.rpm
openvswitch2.13-devel-2.13.0-180.el8fdp.aarch64.rpm
openvswitch2.13-ipsec-2.13.0-180.el8fdp.aarch64.rpm
python3-openvswitch2.13-2.13.0-180.el8fdp.aarch64.rpm
python3-openvswitch2.13-debuginfo-2.13.0-180.el8fdp.aarch64.rpm
noarch:
openvswitch2.13-test-2.13.0-180.el8fdp.noarch.rpm
ppc64le:
network-scripts-openvswitch2.13-2.13.0-180.el8fdp.ppc64le.rpm
openvswitch2.13-2.13.0-180.el8fdp.ppc64le.rpm
openvswitch2.13-debuginfo-2.13.0-180.el8fdp.ppc64le.rpm
openvswitch2.13-debugsource-2.13.0-180.el8fdp.ppc64le.rpm
openvswitch2.13-devel-2.13.0-180.el8fdp.ppc64le.rpm
openvswitch2.13-ipsec-2.13.0-180.el8fdp.ppc64le.rpm
python3-openvswitch2.13-2.13.0-180.el8fdp.ppc64le.rpm
python3-openvswitch2.13-debuginfo-2.13.0-180.el8fdp.ppc64le.rpm
s390x:
network-scripts-openvswitch2.13-2.13.0-180.el8fdp.s390x.rpm
openvswitch2.13-2.13.0-180.el8fdp.s390x.rpm
openvswitch2.13-debuginfo-2.13.0-180.el8fdp.s390x.rpm
openvswitch2.13-debugsource-2.13.0-180.el8fdp.s390x.rpm
openvswitch2.13-devel-2.13.0-180.el8fdp.s390x.rpm
openvswitch2.13-ipsec-2.13.0-180.el8fdp.s390x.rpm
python3-openvswitch2.13-2.13.0-180.el8fdp.s390x.rpm
python3-openvswitch2.13-debuginfo-2.13.0-180.el8fdp.s390x.rpm
x86_64:
network-scripts-openvswitch2.13-2.13.0-180.el8fdp.x86_64.rpm
openvswitch2.13-2.13.0-180.el8fdp.x86_64.rpm
openvswitch2.13-debuginfo-2.13.0-180.el8fdp.x86_64.rpm
openvswitch2.13-debugsource-2.13.0-180.el8fdp.x86_64.rpm
openvswitch2.13-devel-2.13.0-180.el8fdp.x86_64.rpm
openvswitch2.13-ipsec-2.13.0-180.el8fdp.x86_64.rpm
python3-openvswitch2.13-2.13.0-180.el8fdp.x86_64.rpm
python3-openvswitch2.13-debuginfo-2.13.0-180.el8fdp.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
- References:
https://access.redhat.com/security/cve/CVE-2021-3839
https://access.redhat.com/security/cve/CVE-2022-0669
https://access.redhat.com/security/updates/classification/#moderate
- Contact:
The Red Hat security contact is [email protected]. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2022 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=Pjp9
-----END PGP SIGNATURE-----
–
RHSA-announce mailing list
[email protected]
https://listman.redhat.com/mailman/listinfo/rhsa-announce
Related news
An update for dpdk is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3839: DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash * CVE-2022-2132: dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs * CVE-2022-28199: dpdk: error recovery in mlx5 driver not handled properly, allowing for denial of service
A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USER_GET_INFLIGHT_FD / VHOST_USER_SET_INFLIGHT_FD messages that are not closed by the vhost-user slave. By sending such messages continuously, the vhost-user master exhausts available fd in the vhost-user slave process, leading to a denial of service.
A flaw was found in the vhost library in DPDK. Function vhost_user_set_inflight_fd() does not validate `msg->payload.inflight.num_queues`, possibly causing out-of-bounds memory read/write. Any software using DPDK vhost library may crash as a result of this vulnerability.
Red Hat Security Advisory 2022-4788-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and out of bounds read vulnerabilities.
Red Hat Security Advisory 2022-4787-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and out of bounds read vulnerabilities.
An update for openvswitch2.16 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3839: DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash * CVE-2022-0669: dpdk: sending vhost-user-inflight type messages could lead to DoS
An update for openvswitch2.13 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3839: DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash * CVE-2022-0669: dpdk: sending vhost-user-inflight type messages could lead to DoS
An update for openvswitch2.16 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3839: DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash * CVE-2022-0669: dpdk: sending vhost-user-inflight type messages could lead to DoS
An update for openvswitch2.13 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3839: DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash * CVE-2022-0669: dpdk: sending vhost-user-inflight type messages could lead to DoS
An update for openvswitch2.15 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3839: DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash * CVE-2022-0669: dpdk: sending vhost-user-inflight type messages could lead to DoS
An update for openvswitch2.15 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-3839: DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash * CVE-2022-0669: dpdk: sending vhost-user-inflight type messages could lead to DoS