- Fix CVE-2023-3966 [bsc#1219465] openvswitch3: Invalid memory access in Geneve with HW offload
- Added patch,
      +openvswitch-CVE-2023-3966.patch 

• Files Changed
• Browse Source

- Update legacy DPDK/OVS packages to newer DPDK v22.11/OVS v3.1.0 [jsc#PED-6170]
- Fix CVE-2023-5366: missing masks on a final stage with ports trie [bsc#1216002]
- Added patch,
- CVE-2023-3152.patch
- CVE-2023-5366.patch
- CVE-2023-1668.patch
- install-ovsdb-tools.patch
- Drop CVE-2022-4338.patch: Fixed in Upstream
- Drop openvswitch-CVE-2021-36980.patch: Fixed in Upstream
- Drop 0001-Replace-deprecated-var-run-with-run.patch: Fixed in Upstream
- Added patch,
   * CVE-2023-5366.patch
- convert to sysuser generated users

- Add BuildRequires on python-setuptools. Previously this was pulled
  by python-Sphinx in the build environment.

- Fix CVE-2023-3153 [bsc#1212125], VUL-0: CVE-2023-3153: openvswitch,openvswitch3: service monitor MAC flow is not rate limited
     CVE-2023-3152.patch
     CVE-2023-1668.patch

- Remove python/ovs/dirs.py prior to building: have this
  re-generated based on the shipped template (boo#1210479).

- Update OVS version to v3.1.0 and OVN version to v23.03.0
   Some of the features are,
   - ovs-vswitchd now detects changes in CPU affinity and adjusts the number
     of handler and revalidator threads if necessary.
   - AF_XDP:
     * Added support for building with libxdp and libbpf >= 0.7.
     * Support for AF_XDP is now enabled by default if all dependencies are
       available at the build time.  Use --disable-afxdp to disable.
       Use --enable-afxdp to fail the build if dependencies are not present.
   - ovs-appctl:
     * "ovs-appctl ofproto/trace" command can now display port names with the
       "--names" option.
   - OVSDB-IDL:
     * Add the support to specify the persistent uuid for row insert in both
       C and Python IDLs.

• Files Changed
• Browse Source

initialize package

• Browse Source