SUSE update for openvswitch



Risk High
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2021-36980
CWE-ID CWE-416
Exploitation vector Network
Public exploit N/A
Vulnerable software
SUSE Linux Enterprise Storage
Operating systems & Components / Operating system

SUSE Manager Retail Branch Server
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

SUSE Manager Server
Operating systems & Components / Operating system

SUSE Manager Proxy
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications
Operating systems & Components / Operating system

SUSE Linux Enterprise Server
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing
Operating systems & Components / Operating system

SUSE Linux Enterprise Module for Server Applications
Operating systems & Components / Operating system

SUSE Linux Enterprise Module for Packagehub Subpackages
Operating systems & Components / Operating system package or component

ovn-doc
Operating systems & Components / Operating system package or component

openvswitch-doc
Operating systems & Components / Operating system package or component

python3-ovs
Operating systems & Components / Operating system package or component

ovn-vtep-debuginfo
Operating systems & Components / Operating system package or component

ovn-vtep
Operating systems & Components / Operating system package or component

ovn-host-debuginfo
Operating systems & Components / Operating system package or component

ovn-host
Operating systems & Components / Operating system package or component

ovn-docker
Operating systems & Components / Operating system package or component

ovn-devel
Operating systems & Components / Operating system package or component

ovn-debuginfo
Operating systems & Components / Operating system package or component

ovn-central-debuginfo
Operating systems & Components / Operating system package or component

ovn-central
Operating systems & Components / Operating system package or component

ovn
Operating systems & Components / Operating system package or component

openvswitch-vtep-debuginfo
Operating systems & Components / Operating system package or component

openvswitch-vtep
Operating systems & Components / Operating system package or component

openvswitch-test-debuginfo
Operating systems & Components / Operating system package or component

openvswitch-test
Operating systems & Components / Operating system package or component

openvswitch-pki
Operating systems & Components / Operating system package or component

openvswitch-ipsec
Operating systems & Components / Operating system package or component

openvswitch-devel
Operating systems & Components / Operating system package or component

openvswitch-debugsource
Operating systems & Components / Operating system package or component

openvswitch-debuginfo
Operating systems & Components / Operating system package or component

openvswitch
Operating systems & Components / Operating system package or component

libovn-20_06-0-debuginfo
Operating systems & Components / Operating system package or component

libovn-20_06-0
Operating systems & Components / Operating system package or component

libopenvswitch-2_14-0-debuginfo
Operating systems & Components / Operating system package or component

libopenvswitch-2_14-0
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains one high risk vulnerability.

1) Use-after-free

EUVDB-ID: #VU55006

Risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2021-36980

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error in decode_NXAST_RAW_ENCAP (called from ofpact_decode and ofpacts_decode) during the decoding of a RAW_ENCAP action. A remote attacker can send a specially crafted request to the system, trigger a use-after-free error and execute arbitrary code.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Update the affected package openvswitch to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Storage: 7.1

SUSE Manager Retail Branch Server: 4.2

openSUSE Leap: 15.3

SUSE Manager Server: 4.2

SUSE Manager Proxy: 4.2

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Server: 15-SP3

SUSE Linux Enterprise High Performance Computing: 15-SP3

SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3

SUSE Linux Enterprise Module for Server Applications: 15-SP3

ovn-doc: before 20.06.2-150300.19.3.1

openvswitch-doc: before 2.14.2-150300.19.3.1

python3-ovs: before 2.14.2-150300.19.3.1

ovn-vtep-debuginfo: before 20.06.2-150300.19.3.1

ovn-vtep: before 20.06.2-150300.19.3.1

ovn-host-debuginfo: before 20.06.2-150300.19.3.1

ovn-host: before 20.06.2-150300.19.3.1

ovn-docker: before 20.06.2-150300.19.3.1

ovn-devel: before 20.06.2-150300.19.3.1

ovn-debuginfo: before 20.06.2-150300.19.3.1

ovn-central-debuginfo: before 20.06.2-150300.19.3.1

ovn-central: before 20.06.2-150300.19.3.1

ovn: before 20.06.2-150300.19.3.1

openvswitch-vtep-debuginfo: before 2.14.2-150300.19.3.1

openvswitch-vtep: before 2.14.2-150300.19.3.1

openvswitch-test-debuginfo: before 2.14.2-150300.19.3.1

openvswitch-test: before 2.14.2-150300.19.3.1

openvswitch-pki: before 2.14.2-150300.19.3.1

openvswitch-ipsec: before 2.14.2-150300.19.3.1

openvswitch-devel: before 2.14.2-150300.19.3.1

openvswitch-debugsource: before 2.14.2-150300.19.3.1

openvswitch-debuginfo: before 2.14.2-150300.19.3.1

openvswitch: before 2.14.2-150300.19.3.1

libovn-20_06-0-debuginfo: before 20.06.2-150300.19.3.1

libovn-20_06-0: before 20.06.2-150300.19.3.1

libopenvswitch-2_14-0-debuginfo: before 2.14.2-150300.19.3.1

libopenvswitch-2_14-0: before 2.14.2-150300.19.3.1

CPE2.3 External links

https://www.suse.com/support/update/announcement/2022/suse-su-20223116-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###