CVE-2024-2182

EUVD-2024-27144
A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Debian logo
Debian Releases
Debian Product
Codename
ovn
bookworm
23.03.1-1~deb12u2
fixed
forky
25.09.0-3
fixed
sid
25.09.0-3
fixed
trixie
25.03.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ovn
focal
Fixed 20.03.2-0ubuntu0.20.04.5
released
jammy
Fixed 22.03.3-0ubuntu0.22.04.2
released
mantic
Fixed 23.09.0-1ubuntu0.1
released
noble
not-affected
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libopenvswitch-2_14-0
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
libopenvswitch-3_1-0
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
libovn-20_06-0
suse enterprise server 15 SP4
20.06.2-150400.24.29.1
fixed
libovn-23_03-0
suse enterprise server 15 SP5
23.03.3-150500.3.25.1
fixed
suse enterprise server 15 SP6
23.03.3-150600.33.9.1
fixed
openvswitch
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
openvswitch-devel
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
openvswitch-ipsec
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
openvswitch-pki
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
openvswitch-test
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
openvswitch-vtep
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
openvswitch3
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
openvswitch3-devel
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
openvswitch3-ipsec
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
openvswitch3-pki
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
openvswitch3-test
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
openvswitch3-vtep
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
ovn
suse enterprise server 15 SP4
20.06.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
23.03.3-150600.33.9.1
fixed
ovn-central
suse enterprise server 15 SP4
20.06.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
23.03.3-150600.33.9.1
fixed
ovn-devel
suse enterprise server 15 SP4
20.06.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
23.03.3-150600.33.9.1
fixed
ovn-docker
suse enterprise server 15 SP4
20.06.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
23.03.3-150600.33.9.1
fixed
ovn-host
suse enterprise server 15 SP4
20.06.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
23.03.3-150600.33.9.1
fixed
ovn-vtep
suse enterprise server 15 SP4
20.06.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
23.03.3-150600.33.9.1
fixed
ovn3
suse enterprise server 15 SP5
23.03.3-150500.3.25.1
fixed
ovn3-central
suse enterprise server 15 SP5
23.03.3-150500.3.25.1
fixed
ovn3-devel
suse enterprise server 15 SP5
23.03.3-150500.3.25.1
fixed
ovn3-docker
suse enterprise server 15 SP5
23.03.3-150500.3.25.1
fixed
ovn3-host
suse enterprise server 15 SP5
23.03.3-150500.3.25.1
fixed
ovn3-vtep
suse enterprise server 15 SP5
23.03.3-150500.3.25.1
fixed
python3-ovs
suse enterprise server 15 SP4
2.14.2-150400.24.29.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.33.9.1
fixed
python3-ovs3
suse enterprise server 15 SP5
3.1.7-150500.3.25.1
fixed
Common Weakness Enumeration
References
https://access.redhat.com/errata/RHSA-2024:1385
https://access.redhat.com/errata/RHSA-2024:1386
https://access.redhat.com/errata/RHSA-2024:1387
https://access.redhat.com/errata/RHSA-2024:1388
https://access.redhat.com/errata/RHSA-2024:1390
https://access.redhat.com/errata/RHSA-2024:1391
https://access.redhat.com/errata/RHSA-2024:1392
https://access.redhat.com/errata/RHSA-2024:1393
https://access.redhat.com/errata/RHSA-2024:1394
https://access.redhat.com/errata/RHSA-2024:4035
https://access.redhat.com/security/cve/CVE-2024-2182
https://bugzilla.redhat.com/show_bug.cgi?id=2267840
https://mail.openvswitch.org/pipermail/ovs-announce/2024-March/000346.html
https://www.openwall.com/lists/oss-security/2024/03/12/5
http://www.openwall.com/lists/oss-security/2024/03/12/5
https://access.redhat.com/errata/RHSA-2024:1385
https://access.redhat.com/errata/RHSA-2024:1386
https://access.redhat.com/errata/RHSA-2024:1387
https://access.redhat.com/errata/RHSA-2024:1388
https://access.redhat.com/errata/RHSA-2024:1390
https://access.redhat.com/errata/RHSA-2024:1391
https://access.redhat.com/errata/RHSA-2024:1392
https://access.redhat.com/errata/RHSA-2024:1393
https://access.redhat.com/errata/RHSA-2024:1394
https://access.redhat.com/errata/RHSA-2024:4035
https://access.redhat.com/security/cve/CVE-2024-2182
https://bugzilla.redhat.com/show_bug.cgi?id=2267840
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APR4GCVCMQD3DQUKXDNGIXCCYGE5V7IT/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CB4N522FCS4XWAPUKRWZF6QZ657FCIDF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XRKXOOOKD56TY3JQVB45N3GCTX3EG4BV/
https://mail.openvswitch.org/pipermail/ovs-announce/2024-March/000346.html
https://www.openwall.com/lists/oss-security/2024/03/12/5