Accepted openvswitch 2.10.7+ds1-0+deb10u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 12 Feb 2021 15:48:38 +0100
Source: openvswitch
Architecture: source
Version: 2.10.7+ds1-0+deb10u1
Distribution: buster-security
Urgency: medium
Maintainer: Debian OpenStack <team+openstack@tracker.debian.org>
Changed-By: Thomas Goirand <zigo@debian.org>
Closes: 982493
Changes:
openvswitch (2.10.7+ds1-0+deb10u1) buster-security; urgency=medium
.
* New upstream point release:
- Addresses CVE-2020-35498: denial of service attacks, in which crafted
network packets could cause the packet lookup to ignore network header
fields from layers 3 and 4. The crafted network packet is an ordinary
IPv4 or IPv6 packet with Ethernet padding length above 255 bytes. This
causes the packet sanity check to abort parsing header fields after
layer 2 (Closes: #982493).
Checksums-Sha1:
ab198e72584bfb96e1e56e2439011f15e704028e 3210 openvswitch_2.10.7+ds1-0+deb10u1.dsc
fa65c12ace8002f51f0c280e7519b986a0d2478b 3871520 openvswitch_2.10.7+ds1.orig.tar.xz
e81d023325eb117164900c0d028bffa87e513c40 65448 openvswitch_2.10.7+ds1-0+deb10u1.debian.tar.xz
b770a1505e951eac6b60f3ed99e960e44f47aa54 14031 openvswitch_2.10.7+ds1-0+deb10u1_amd64.buildinfo
Checksums-Sha256:
a8139b54dea621d5036c169c437d46d17f380ffdfcdd2e0caef41330cfb47fd8 3210 openvswitch_2.10.7+ds1-0+deb10u1.dsc
42c705fe12bee854250738b1fa975ee0e3934ce9cbc3a3ea80777066aca15fac 3871520 openvswitch_2.10.7+ds1.orig.tar.xz
4f14aa41394e33f92f0a4d4ab2e3d07a75f3eabac1c190de5eced98f3e423ea1 65448 openvswitch_2.10.7+ds1-0+deb10u1.debian.tar.xz
ef692e1472b4cf68e11e96c07f80a467ea8ef7b547af2c0e3c6ddeceeea6b128 14031 openvswitch_2.10.7+ds1-0+deb10u1_amd64.buildinfo
Files:
19229b8a329a5ee2d853ad804747b93d 3210 net optional openvswitch_2.10.7+ds1-0+deb10u1.dsc
972d6239c7af468809d7383f510d0fac 3871520 net optional openvswitch_2.10.7+ds1.orig.tar.xz
e77c4baf34b6e0e481f9f8d2c1eba233 65448 net optional openvswitch_2.10.7+ds1-0+deb10u1.debian.tar.xz
dfd3dac5a722f1b8d32fe70120e58e89 14031 net optional openvswitch_2.10.7+ds1-0+deb10u1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=hq3n
-----END PGP SIGNATURE-----
Reply to: