VulnerableCode Package Details - pkg:deb/debian/openvswitch@2.10.0%2B2018.08.28%2Bgit.8ca7c82b7d%2Bds1-12%2Bdeb10u2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/openvswitch@2.10.0%2B2018.08.28%2Bgit.8ca7c82b7d%2Bds1-12%2Bdeb10u2

Essentials
History (66)

purl	pkg:deb/debian/openvswitch@2.10.0%2B2018.08.28%2Bgit.8ca7c82b7d%2Bds1-12%2Bdeb10u2

Next non-vulnerable version	3.7.1-2
Latest non-vulnerable version	3.7.1-2
Risk	4.4

Vulnerabilities affecting this package (11)

Vulnerability	Summary	Fixed by
VCID-1rz7-uz9z-2kbr Aliases: CVE-2023-3966	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-5whw-rhdy-nkew Aliases: CVE-2023-5366	openvswitch: openvswitch don't match packets on nd_target field	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-719y-s4zw-ekdc Aliases: CVE-2015-8011	lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c	2.10.7+ds1-0+deb10u1 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-at6t-sgxg-j7gr Aliases: CVE-2024-22563	openvswitch 2.17.8 was discovered to contain a memory leak via the function xmalloc__ in openvswitch-2.17.8/lib/util.c.	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-buc7-dne2-yqaj Aliases: CVE-2022-4337	Multiple denial of service vulnerabilites have been found in Open vSwitch.	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-d8d2-d81a-nkgk Aliases: CVE-2022-4338	Multiple denial of service vulnerabilites have been found in Open vSwitch.	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-dz8t-nfj7-skgz Aliases: CVE-2020-27827	Multiple denial of service vulnerabilites have been found in Open vSwitch.	2.10.7+ds1-0+deb10u1 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-g5qm-fjsg-z3eq Aliases: CVE-2022-32166	openvswitch: Heap buffer over-read in flow.c	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-jj4q-qp7b-j3hu Aliases: CVE-2020-35498	Multiple denial of service vulnerabilites have been found in Open vSwitch.	2.10.7+ds1-0+deb10u1 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-nw3h-mswm-v7d2 Aliases: CVE-2021-36980	Multiple denial of service vulnerabilites have been found in Open vSwitch.	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-sq5h-zx4v-67hm Aliases: CVE-2023-1668	Multiple denial of service vulnerabilites have been found in Open vSwitch.	2.15.0+ds1-2+deb11u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (8)

Vulnerability	Summary	Aliases
VCID-167g-xgrw-kubp	openvswitch: Mishandle of group mods in lib/ofp-util.c:parse_group_prop_ntr_selection_method() allows for assertion failure	CVE-2018-17204
VCID-21ps-f19w-87hx	openvswitch: Buffer over-read while parsing the group mod OpenFlow message	CVE-2017-9265
VCID-2zq9-f9yb-v3gw	openvswitch: Buffer over-read in lib/ofp-actions.c:decode_bundle()	CVE-2018-17206
VCID-4rhb-vhvc-v3cx	openvswitch: Integer underflow in the ofputil_pull_queue_get_config_reply10 function	CVE-2017-9214
VCID-6gap-zvsn-fqg7	openvswitch: Error during bundle commit in ofproto/ofproto.c:ofproto_rule_insert__() allows for crash	CVE-2018-17205
VCID-qrfh-87d5-ybh6	openvswitch: Invalid processing of a malicious OpenFlow role status message	CVE-2017-9263
VCID-s6b4-xqmn-w3dc	openvswitch: Multiple memory leaks in lib/ofp-util.c while parsing malformed OpenFlow group mod messages	CVE-2017-14970
VCID-xcxc-et9w-uqhd	openvswitch: Buffer over-read while parsing malformed TCP, UDP and IPv6 packets	CVE-2017-9264

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:58:57.390452+00:00	Debian Oval Importer	Fixing	VCID-qrfh-87d5-ybh6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:50:12.220408+00:00	Debian Oval Importer	Affected by	VCID-719y-s4zw-ekdc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:43:16.043269+00:00	Debian Oval Importer	Affected by	VCID-sq5h-zx4v-67hm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:24:02.010689+00:00	Debian Oval Importer	Affected by	VCID-jj4q-qp7b-j3hu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:36:12.470061+00:00	Debian Oval Importer	Fixing	VCID-4rhb-vhvc-v3cx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:15:13.501978+00:00	Debian Oval Importer	Fixing	VCID-2zq9-f9yb-v3gw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:12:51.587049+00:00	Debian Oval Importer	Fixing	VCID-167g-xgrw-kubp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:01:13.838841+00:00	Debian Oval Importer	Affected by	VCID-at6t-sgxg-j7gr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:53:10.907006+00:00	Debian Oval Importer	Affected by	VCID-dz8t-nfj7-skgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:35:43.867040+00:00	Debian Oval Importer	Fixing	VCID-xcxc-et9w-uqhd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:27:25.087948+00:00	Debian Oval Importer	Fixing	VCID-6gap-zvsn-fqg7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:20:52.829865+00:00	Debian Oval Importer	Affected by	VCID-buc7-dne2-yqaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:07:38.850295+00:00	Debian Oval Importer	Fixing	VCID-s6b4-xqmn-w3dc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:04:55.972320+00:00	Debian Oval Importer	Fixing	VCID-21ps-f19w-87hx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:02:41.030440+00:00	Debian Oval Importer	Affected by	VCID-1rz7-uz9z-2kbr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:00:30.677102+00:00	Debian Oval Importer	Affected by	VCID-5whw-rhdy-nkew	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:39:34.954172+00:00	Debian Oval Importer	Affected by	VCID-g5qm-fjsg-z3eq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:18:26.568946+00:00	Debian Oval Importer	Affected by	VCID-d8d2-d81a-nkgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:00:13.556663+00:00	Debian Oval Importer	Affected by	VCID-nw3h-mswm-v7d2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:01:59.598432+00:00	Debian Oval Importer	Affected by	VCID-jj4q-qp7b-j3hu	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:59:05.598496+00:00	Debian Oval Importer	Affected by	VCID-719y-s4zw-ekdc	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:47:46.992569+00:00	Debian Oval Importer	Affected by	VCID-dz8t-nfj7-skgz	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-12T00:31:12.310509+00:00	Debian Oval Importer	Fixing	VCID-qrfh-87d5-ybh6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:22:41.578281+00:00	Debian Oval Importer	Affected by	VCID-719y-s4zw-ekdc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:16:00.118651+00:00	Debian Oval Importer	Affected by	VCID-sq5h-zx4v-67hm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:57:31.894408+00:00	Debian Oval Importer	Affected by	VCID-jj4q-qp7b-j3hu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:11:09.846657+00:00	Debian Oval Importer	Fixing	VCID-4rhb-vhvc-v3cx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:50:57.276736+00:00	Debian Oval Importer	Fixing	VCID-2zq9-f9yb-v3gw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:48:42.421474+00:00	Debian Oval Importer	Fixing	VCID-167g-xgrw-kubp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:41:30.382104+00:00	Debian Oval Importer	Affected by	VCID-at6t-sgxg-j7gr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:35:21.021127+00:00	Debian Oval Importer	Affected by	VCID-dz8t-nfj7-skgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:20:21.761504+00:00	Debian Oval Importer	Fixing	VCID-xcxc-et9w-uqhd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:12:26.554199+00:00	Debian Oval Importer	Fixing	VCID-6gap-zvsn-fqg7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:06:05.233126+00:00	Debian Oval Importer	Affected by	VCID-buc7-dne2-yqaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:54:14.659373+00:00	Debian Oval Importer	Fixing	VCID-s6b4-xqmn-w3dc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:51:26.198655+00:00	Debian Oval Importer	Fixing	VCID-21ps-f19w-87hx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:49:15.154036+00:00	Debian Oval Importer	Affected by	VCID-1rz7-uz9z-2kbr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:47:05.972933+00:00	Debian Oval Importer	Affected by	VCID-5whw-rhdy-nkew	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:26:30.304009+00:00	Debian Oval Importer	Affected by	VCID-g5qm-fjsg-z3eq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:05:46.208209+00:00	Debian Oval Importer	Affected by	VCID-d8d2-d81a-nkgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:47:47.856001+00:00	Debian Oval Importer	Affected by	VCID-nw3h-mswm-v7d2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:50:17.690849+00:00	Debian Oval Importer	Affected by	VCID-jj4q-qp7b-j3hu	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:47:21.284001+00:00	Debian Oval Importer	Affected by	VCID-719y-s4zw-ekdc	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:36:01.488618+00:00	Debian Oval Importer	Affected by	VCID-dz8t-nfj7-skgz	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-09T00:01:33.447138+00:00	Debian Oval Importer	Fixing	VCID-qrfh-87d5-ybh6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:53:23.106418+00:00	Debian Oval Importer	Affected by	VCID-719y-s4zw-ekdc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:46:56.866950+00:00	Debian Oval Importer	Affected by	VCID-sq5h-zx4v-67hm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:29:14.179212+00:00	Debian Oval Importer	Affected by	VCID-jj4q-qp7b-j3hu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:44:49.562128+00:00	Debian Oval Importer	Fixing	VCID-4rhb-vhvc-v3cx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:25:31.617020+00:00	Debian Oval Importer	Fixing	VCID-2zq9-f9yb-v3gw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:23:22.435715+00:00	Debian Oval Importer	Fixing	VCID-167g-xgrw-kubp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:21:27.445975+00:00	Debian Oval Importer	Affected by	VCID-at6t-sgxg-j7gr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:18:34.505641+00:00	Debian Oval Importer	Affected by	VCID-dz8t-nfj7-skgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:06:25.773349+00:00	Debian Oval Importer	Fixing	VCID-xcxc-et9w-uqhd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:58:45.527238+00:00	Debian Oval Importer	Fixing	VCID-6gap-zvsn-fqg7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:52:33.795494+00:00	Debian Oval Importer	Affected by	VCID-buc7-dne2-yqaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:44:02.687473+00:00	Debian Oval Importer	Fixing	VCID-s6b4-xqmn-w3dc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:41:28.254298+00:00	Debian Oval Importer	Fixing	VCID-21ps-f19w-87hx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:39:24.379520+00:00	Debian Oval Importer	Affected by	VCID-1rz7-uz9z-2kbr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:37:22.655609+00:00	Debian Oval Importer	Affected by	VCID-5whw-rhdy-nkew	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:18:02.678934+00:00	Debian Oval Importer	Affected by	VCID-g5qm-fjsg-z3eq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:58:29.856244+00:00	Debian Oval Importer	Affected by	VCID-d8d2-d81a-nkgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:41:22.624711+00:00	Debian Oval Importer	Affected by	VCID-nw3h-mswm-v7d2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T23:22:56.227288+00:00	Debian Oval Importer	Affected by	VCID-jj4q-qp7b-j3hu	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T23:20:07.425054+00:00	Debian Oval Importer	Affected by	VCID-719y-s4zw-ekdc	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T23:09:11.781678+00:00	Debian Oval Importer	Affected by	VCID-dz8t-nfj7-skgz	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0