[ubuntu/noble-security] ovn 24.03.2-0ubuntu0.24.04.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Mar 31 11:45:41 UTC 2025
ovn (24.03.2-0ubuntu0.24.04.2) noble-security; urgency=medium
* SECURITY UPDATE: ACL bypass in logical switch with DNS records
- debian/patches/CVE-2025-0650.patch: skip only OVN DNS responder
packets from OUT_ACL in controller/pinctrl.c,
include/ovn/logical-fields.h, lib/logical-fields.c, northd/northd.c,
tests/ovn.at.
- CVE-2025-0650
Date: 2025-01-31 17:49:10.895117+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/ovn/24.03.2-0ubuntu0.24.04.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list