UbuntuUpdates.org

Package "ovn-docker"

Name: ovn-docker

Description:

OVN Docker drivers
Latest version: 22.03.8-0ubuntu0.22.04.1
Release: jammy (22.04)
Level: updates
Repository: universe
Head package: ovn
Homepage: https://github.com/ovn-org/ovn

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "ovn-docker"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "ovn-docker" in Jammy

Repository Area Version
base universe 22.03.0-0ubuntu1
security universe 22.03.3-0ubuntu0.22.04.5

Changelog

Version: 22.03.8-0ubuntu0.22.04.1 2025-09-23 17:07:14 UTC

  ovn (22.03.8-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream point release 22.03.8 (LP: #2119301).
  * d/p/CVE-2024-2182.patch: Drop, included in point release.
  * d/p/CVE-2025-0650.patch: Drop, included in point release.
  * d/p/lp-2056769-ftbfs.patch: Drop, included in point release.
  * d/p/lp-2119151-Revert-northd-Don-t-skip-the-unSNAT-stage-for-traffi.patch:
    [Hardware Offload] Fix traffic from SNATed networks to Load Balancer
    VIPs (LP: #2119151).
  * d/flaky-tests.txt: Added flaky test for s390x architecture.

 -- Martin Kalcok <email address hidden> Thu, 31 Jul 2025 11:57:22 +0000
Source diff to previous version
2119301 [SRU] ovn 22.03.8 point release
2119151 [hwol] Traffic from SNATed networks to LB VIPs is broken
CVE-2024-2182 A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inje
CVE-2025-0650 A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations

Version: 22.03.3-0ubuntu0.22.04.5 2025-03-31 19:07:40 UTC

  ovn (22.03.3-0ubuntu0.22.04.5) jammy-security; urgency=medium

  * SECURITY UPDATE: ACL bypass in logical switch with DNS records
    - debian/patches/CVE-2025-0650.patch: skip only OVN DNS responder
      packets from OUT_ACL in controller/pinctrl.c,
      include/ovn/logical-fields.h, lib/logical-fields.c, northd/northd.c,
      tests/ovn.at.
    - CVE-2025-0650

 -- Marc Deslauriers <email address hidden> Fri, 31 Jan 2025 09:56:48 -0500
Source diff to previous version
CVE-2025-0650 A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations

Version: 22.03.3-0ubuntu0.22.04.3 2024-03-21 21:06:57 UTC

  ovn (22.03.3-0ubuntu0.22.04.3) jammy; urgency=medium

  * d/control: Update openvswitch-source build dependency version.
  * d/p/lp-2056769-ftbfs.patch: Fix FTBFS (LP: #2056769).

 -- Frode Nordahl <email address hidden> Thu, 14 Mar 2024 14:22:40 +0000
Source diff to previous version
2056769 [jammy/mantic] ftbfs due to build-time incompatibility with updated openvswitch

Version: 22.03.3-0ubuntu0.22.04.2 2024-03-12 18:07:11 UTC

  ovn (22.03.3-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: Insufficient validation of incoming BFD packets
    - debian/patches/CVE-2024-2182.patch: set check_tnl_key for BFD on
      tunnel ifaces in controller/bfd.c, tests/ovn.at.
    - CVE-2024-2182

 -- Marc Deslauriers <email address hidden> Fri, 08 Mar 2024 19:42:46 -0500
Source diff to previous version

Version: 22.03.3-0ubuntu0.22.04.1 2023-09-28 17:07:03 UTC

  ovn (22.03.3-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version 22.03.3 (LP: #2034675).
    - Add CoPP for the svc_monitor_mac. This addresses CVE-2023-3153.

 -- Frode Nordahl <email address hidden> Thu, 07 Sep 2023 08:17:55 +0000
2034675 [SRU] ovn 22.03.3 point release
CVE-2023-3153 service monitor MAC flow is not rate limited


About   -   Send Feedback to @ubuntu_updates