Nixpkgs Security Tracker

Untriaged

Permalink CVE-2024-2182

created 5 months ago

Ovn: insufficient validation of bfd packets may lead to denial of service

A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.

Affected products

ovn

==22.03.7
*
==24.03.1
==23.06.3
==23.09.3
==23.03.3

ovn2.11

ovn2.12

ovn2.13

ovn-2021

ovn22.03

ovn22.06

ovn22.09

ovn22.12

ovn23.03

ovn23.06

ovn23.09

Matching in nixpkgs

pkgs.ovn

Open Virtual Network

nixos-unstable -
- nixpkgs-unstable 25.09.0

pkgs.novnc

VNC client web application

nixos-unstable -
- nixpkgs-unstable 1.6.0

pkgs.turbovnc

High-speed version of VNC derived from TightVNC

nixos-unstable -
- nixpkgs-unstable 3.2

pkgs.nanovna-qt

PC GUI software for NanoVNA V2 series

nixos-unstable -
- nixpkgs-unstable 20200403

pkgs.nanovna-saver

Tool for reading, displaying and saving data from the NanoVNA

nixos-unstable -
- nixpkgs-unstable 0.7.3

Package maintainers

@chuangzhu Chuang Zhu <nixos@chuang.cz>
@hesiod Tobias Markus <tobias@markus-regensburg.de>
@zaninime Francesco Zanini <francesco@zanini.me>
@NeverBehave Xinhao Luo <i@never.pet>
@adamcstephens Adam C. Stephens <happy.plan4249@valkor.net>
@booxter Ihar Hrachyshka <ihar.hrachyshka@gmail.com>
@nh2 Niklas Hambüchen <mail@nh2.me>

Suggestion detail