CVE 2020-27827
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.
Related bugs and status
CVE-2020-27827 (Candidate) is related to these bugs:
Bug #1737866: Too many open files when large number of routers on a host
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1737866 | Too many open files when large number of routers on a host | OpenStack Neutron Open vSwitch Charm | Undecided | Invalid | ||
| 1737866 | Too many open files when large number of routers on a host | openvswitch (Ubuntu) | Medium | Fix Released | ||
| 1737866 | Too many open files when large number of routers on a host | openvswitch (Ubuntu Bionic) | Medium | Fix Released | ||
| 1737866 | Too many open files when large number of routers on a host | openvswitch (Ubuntu Artful) | Medium | Won't Fix | ||
| 1737866 | Too many open files when large number of routers on a host | openvswitch (Ubuntu Xenial) | Medium | Fix Released | ||
| 1737866 | Too many open files when large number of routers on a host | Ubuntu Cloud Archive | Undecided | Fix Released | ||
| 1737866 | Too many open files when large number of routers on a host | Ubuntu Cloud Archive mitaka | Medium | Fix Committed | ||
| 1737866 | Too many open files when large number of routers on a host | Ubuntu Cloud Archive ocata | Medium | Fix Released | ||
| 1737866 | Too many open files when large number of routers on a host | Ubuntu Cloud Archive pike | Medium | Fix Released | ||
Bug #1823295: openvswitch-switch package upgrades restart daemons multiple times
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1823295 | openvswitch-switch package upgrades restart daemons multiple times | openvswitch (Ubuntu) | High | Fix Released | ||
| 1823295 | openvswitch-switch package upgrades restart daemons multiple times | openvswitch (Ubuntu Disco) | High | Fix Released | ||
| 1823295 | openvswitch-switch package upgrades restart daemons multiple times | openvswitch (Ubuntu Bionic) | High | Fix Released | ||
| 1823295 | openvswitch-switch package upgrades restart daemons multiple times | openvswitch (Ubuntu Cosmic) | High | Won't Fix | ||
Bug #1836713: upgrade of openvswitch packages resets alternative binaries to auto
Bug #1881077: [SRU] openvswitch 2.9.7
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1881077 | [SRU] openvswitch 2.9.7 | openvswitch (Ubuntu) | Undecided | Invalid | ||
| 1881077 | [SRU] openvswitch 2.9.7 | openvswitch (Ubuntu Bionic) | Medium | Fix Released | ||
| 1881077 | [SRU] openvswitch 2.9.7 | Ubuntu Cloud Archive | Undecided | Invalid | ||
| 1881077 | [SRU] openvswitch 2.9.7 | Ubuntu Cloud Archive queens | Medium | Fix Released | ||
Bug #1888198: [SRU] opevnswitch 2.5.9
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1888198 | [SRU] opevnswitch 2.5.9 | openvswitch (Ubuntu) | Medium | Fix Released | ||
| 1888198 | [SRU] opevnswitch 2.5.9 | openvswitch (Ubuntu Xenial) | Medium | Fix Released | ||
| 1888198 | [SRU] opevnswitch 2.5.9 | Ubuntu Cloud Archive | Undecided | Fix Released | ||
| 1888198 | [SRU] opevnswitch 2.5.9 | Ubuntu Cloud Archive mitaka | Medium | Fix Committed | ||
Bug #1906280: [SRU] Add support for disabling mlockall() calls in ovs-vswitchd
Bug #1907686: ovn: instance unable to retrieve metadata
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1907686 | ovn: instance unable to retrieve metadata | charm-ovn-chassis | Undecided | Invalid | ||
| 1907686 | ovn: instance unable to retrieve metadata | neutron | Undecided | Invalid | ||
| 1907686 | ovn: instance unable to retrieve metadata | openvswitch (Ubuntu) | High | Fix Released | ||
| 1907686 | ovn: instance unable to retrieve metadata | openvswitch (Ubuntu Hirsute) | High | Fix Released | ||
| 1907686 | ovn: instance unable to retrieve metadata | openvswitch (Ubuntu Groovy) | High | Fix Released | ||
| 1907686 | ovn: instance unable to retrieve metadata | openvswitch (Ubuntu Focal) | High | Fix Released | ||
| 1907686 | ovn: instance unable to retrieve metadata | Ubuntu Cloud Archive | Undecided | Fix Released | ||
| 1907686 | ovn: instance unable to retrieve metadata | Ubuntu Cloud Archive ussuri | Undecided | Fix Released | ||
| 1907686 | ovn: instance unable to retrieve metadata | Ubuntu Cloud Archive victoria | Undecided | Won't Fix | ||
| 1907686 | ovn: instance unable to retrieve metadata | Ubuntu Cloud Archive wallaby | Undecided | Fix Released | ||
Bug #1910608: openvswitch embedded code copy of lldpd is vulnerable to CVE-2015-8011
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1910608 | openvswitch embedded code copy of lldpd is vulnerable to CVE-2015-8011 | openvswitch (Ubuntu) | Undecided | Fix Released | ||
Bug #1912201: [SRU] openvswitch 2.9.8
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1912201 | [SRU] openvswitch 2.9.8 | Ubuntu Cloud Archive | Undecided | Invalid | ||
| 1912201 | [SRU] openvswitch 2.9.8 | Ubuntu Cloud Archive queens | Medium | Fix Released | ||
| 1912201 | [SRU] openvswitch 2.9.8 | openvswitch (Ubuntu) | Undecided | Fix Released | ||
| 1912201 | [SRU] openvswitch 2.9.8 | openvswitch (Ubuntu Bionic) | Medium | Fix Released | ||
Bug #1912225: [SRU] openvswitch 2.11.5
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1912225 | [SRU] openvswitch 2.11.5 | Ubuntu Cloud Archive | Undecided | Invalid | ||
| 1912225 | [SRU] openvswitch 2.11.5 | Ubuntu Cloud Archive stein | High | Fix Released | ||
Bug #1915829: FQDN / hostname recorded in OVSDB is unreliable
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | openvswitch (Ubuntu) | High | Fix Released | ||
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | openvswitch (Ubuntu Focal) | High | Fix Released | ||
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | openvswitch (Ubuntu Groovy) | High | Fix Released | ||
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | openvswitch (Ubuntu Hirsute) | High | Fix Released | ||
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | Ubuntu Cloud Archive | High | Fix Released | ||
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | Ubuntu Cloud Archive ussuri | High | Fix Released | ||
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | Ubuntu Cloud Archive wallaby | High | Fix Released | ||
| 1915829 | FQDN / hostname recorded in OVSDB is unreliable | Ubuntu Cloud Archive victoria | High | Invalid | ||
Bug #1920141: [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | openvswitch (Ubuntu) | Undecided | Invalid | ||
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | openvswitch (Ubuntu Groovy) | High | Fix Released | ||
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | openvswitch (Ubuntu Focal) | High | Fix Released | ||
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | dpdk (Ubuntu) | Undecided | Fix Released | ||
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | dpdk (Ubuntu Focal) | High | Fix Released | ||
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | dpdk (Ubuntu Groovy) | High | Fix Released | ||
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | Ubuntu Cloud Archive | Undecided | Invalid | ||
| 1920141 | [SRU] openvswitch 2.13.3 / linking changes in DPDK 19.11.x | Ubuntu Cloud Archive ussuri | Undecided | Fix Released | ||
Bug #1937121: lldpd needs update to fix CVE-2020-27827
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1937121 | lldpd needs update to fix CVE-2020-27827 | lldpd (Ubuntu) | Undecided | Confirmed | ||
See the 
CVE page on Mitre.org
for more details.
