Ubuntu
openvswitch package

Change log for openvswitch package in Ubuntu

175 of 272 results FirstPreviousLast
Published in oracular-release
Deleted in oracular-proposed (Reason: Moved to oracular) 
openvswitch (3.3.1-1) unstable; urgency=medium

  * Team upload.
  * Update upstream source from tag 'upstream/3.3.1'
  * d/patches: Drop patches included in new upstream release.
  * d/tests: Use build-needed restriction field.

 -- Frode Nordahl <email address hidden>  Sat, 08 Jun 2024 13:11:24 +0200

Available diffs

Published in noble-updates
Deleted in noble-proposed (Reason: moved to -updates) 
openvswitch (3.3.0-1ubuntu3) noble; urgency=medium

  * d/p/ofproto-dpif-xlate-Fix-continuations-with-associated-
    metering.patch: Cherry-pick fix required for OVN 24.03.2
    (LP: #2066906).
Superseded in oracular-release
Deleted in oracular-proposed (Reason: Moved to oracular) 
openvswitch (3.3.0-5) unstable; urgency=medium

  * Team upload.

  [ Thomas Goirand ]
  * Add loong64 support. Thanks zhangdandan for the patch. (Closes: #1065591).

  [ Frode Nordahl ]
  * d/p/ofproto-dpif-xlate-Fix-continuations-with-associated-
    metering.patch: Cherry-pick fix required for OVN 24.03.2.

 -- Frode Nordahl <email address hidden>  Sat, 18 May 2024 22:03:21 +0200

Available diffs

Superseded in oracular-release
Deleted in oracular-proposed (Reason: Moved to oracular) 
openvswitch (3.3.0-4) unstable; urgency=medium

  * Team upload.
  * d/tests: Use NMAP implementation of netcat (LP: #2062506).
  * d/tests: Allow populating TEST_LIST from environment.
  * d/tests: Use 1G hugepages for dpdk test on arm64 (LP: #2059400).
  * d/tests/run-tests.sh: Fix shellcheck lint.
  * d/tests: Bump number of 1G hugepages to 3 for arm64 (LP: #2063112).
  * d/tests: Skip flaky tests.
  * d/tests: Skip tests not fitting memory constraints in arm64 CI
    (LP: #2063152).
  * d/tests/testlist.py: Handle range of single test correctly.

 -- Frode Nordahl <email address hidden>  Wed, 01 May 2024 09:37:03 +0200
Superseded in noble-proposed 
openvswitch (3.3.0-1ubuntu2) noble; urgency=medium

  * d/tests: Allow populating TEST_LIST from environment.
  * d/tests: Bump number of 1G hugepages to 3 for arm64 (LP: #2063112).
  * d/tests: Skip flaky tests.
  * d/tests/testlist.py: Handle range of single test correctly.
  * d/tests: Skip tests not fitting memory constraints in arm64 CI
    (LP: #2063152).

 -- Frode Nordahl <email address hidden>  Tue, 23 Apr 2024 19:01:56 +0000

Available diffs

Superseded in oracular-release
Published in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.3.0-1ubuntu1) noble; urgency=medium

  * d/p/lp-2060434-*.patch: Fix FTBFS caused by change of behavior in
    Python 3.12.x (LP: #2060434).
  * d/tests/run-tests.sh: Use 1G hugepages for dpdk test on arm64
    (LP: #2059400).
  * d/tests/userspace-skip-tests.txt: Skip 802.1ad - vlan_limit to
    unblock s390x autopkgtests pending investigation of (LP: #2060245).

 -- Frode Nordahl <email address hidden>  Mon, 08 Apr 2024 14:03:46 +0000
Superseded in noble-proposed 
openvswitch (3.3.0-1build2) noble; urgency=medium

  * No-change rebuild for CVE-2024-3094

 -- William Grant <email address hidden>  Mon, 01 Apr 2024 18:11:04 +1100

Available diffs

Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.3.0-1build1) noble; urgency=medium

  * No-change rebuild against libssl3t64

 -- Steve Langasek <email address hidden>  Mon, 04 Mar 2024 20:32:06 +0000
Published in focal-updates
Published in focal-security 
openvswitch (2.13.8-0ubuntu1.4) focal-security; urgency=medium

  * SECURITY UPDATE: Incomplete fix for CVE-2023-5366
    - debian/patches/CVE-2023-5366-2.patch: follow Open Flow spec
      converting from OF to DP in lib/odp-util.c, tests/ofproto-macros.at,
      tests/system-traffic.at.
    - CVE-2023-5366
  * SECURITY UPDATE: vulnerable to crafted Geneve packets
    - debian/patches/CVE-2023-3966.patch: check geneve metadata length in
      lib/netdev-offload-tc.c, tests/system-offloads-traffic.at.
    - CVE-2023-3966

 -- Marc Deslauriers <email address hidden>  Fri, 01 Mar 2024 12:59:59 -0500
Published in mantic-updates
Published in mantic-security 
openvswitch (3.2.2-0ubuntu0.23.10.1) mantic-security; urgency=medium

  * Update to 3.2.2 to fix security issues.
    - CVE-2023-3966: vulnerable to crafted Geneve packets
    - CVE-2023-5366: OpenFlow rules bypass via ICMPv6 Neighbor Adv packets
  * Dropped patches included in new version:
    - d/p/tests-system-traffic-Ensure-no-name-resolution-for-t.patch
    - d/p/tests-Use-ping-timeout-instead-of-deadline.patch

 -- Marc Deslauriers <email address hidden>  Thu, 29 Feb 2024 11:25:34 -0500
Published in jammy-updates
Published in jammy-security 
openvswitch (2.17.9-0ubuntu0.22.04.1) jammy-security; urgency=medium

  * Update to 2.17.9 to fix security issues.
    - CVE-2023-3966: vulnerable to crafted Geneve packets
    - CVE-2023-5366: OpenFlow rules bypass via ICMPv6 Neighbor Adv packets
  * d/p/0001-ovsdb-idl-Support-write-only-changed-IDL-monitor-mod.patch:
    updated for 2.17.9 changes.

 -- Marc Deslauriers <email address hidden>  Thu, 29 Feb 2024 13:45:15 -0500
Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.3.0-1) unstable; urgency=medium

  * Team upload.
  * Update upstream source from tag 'upstream/3.3.0'.
  * d/p/dp-packet-Reset-offload_offsets-when-clearing-a-packet.patch:
    Drop, included in new upstream version.
  * d/p/0001-tests-ovsdb-server-Fix-config-file-same-schema-test.patch:
    Drop, included in new upstream version.
  * d/openvswitch-switch.lintian-overrides: Remove obsolete tag "package-
    supports-alternative-init-but-no-init.d-script".
  * d/control: Replace pkg-config with pkgconf as build dependency.
  * CVE-2023-3966: Fix invalid memory access in Geneve with HW offload
    (Closes: #1063492).

 -- Frode Nordahl <email address hidden>  Thu, 29 Feb 2024 14:25:30 +0100
Superseded in noble-proposed 
openvswitch (3.3.0~git20240118.e802fe7-3ubuntu1) noble; urgency=medium

  * SECURITY UPDATE: vulnerable to crafted Geneve packets
    - debian/patches/CVE-2023-3966.patch: check geneve metadata length in
      lib/netdev-offload-tc.c, tests/system-traffic.at.
    - CVE-2023-3966
  * SECURITY UPDATE: OpenFlow rules bypass via ICMPv6 Neighbor Adv packets
    - debian/patches/CVE-2023-5366.patch: follow Open Flow spec converting
      from OF to DP in lib/odp-util.c, tests/ofproto-macros.at,
      tests/system-traffic.at.
    - CVE-2023-5366

 -- Marc Deslauriers <email address hidden>  Thu, 29 Feb 2024 11:16:59 -0500
Deleted in noble-updates (Reason: superseded by release)
Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.3.0~git20240118.e802fe7-3) unstable; urgency=medium

  * Team upload.
  * d/p/dp-packet-Reset-offload_offsets-when-clearing-a-packet.patch:
    Cherry-pick fix, required for OVN branch-24.03 snapshot.

 -- Frode Nordahl <email address hidden>  Mon, 05 Feb 2024 08:45:19 +0000
Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.3.0~git20240118.e802fe7-2) unstable; urgency=medium

  * Team upload.
  * d/p/0001-tests-ovsdb-server-Fix-config-file-same-schema-test.patch:
    Fix s390x build error.

 -- Frode Nordahl <email address hidden>  Sat, 20 Jan 2024 09:45:12 +0000
Superseded in noble-proposed 
openvswitch (3.3.0~git20240118.e802fe7-1) unstable; urgency=medium

  * Team upload.
  * Update upstream source from tag 'upstream/3.3.0_git20240118.e802fe7'

 -- Frode Nordahl <email address hidden>  Thu, 18 Jan 2024 20:43:44 +0000
Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.2.2~git20231029-2build1) noble; urgency=medium

  * Rebuild against latest dpdk

 -- Jeremy BĂ­cha <email address hidden>  Mon, 15 Jan 2024 20:08:50 -0500
Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.2.2~git20231029-2) unstable; urgency=medium

  * Team upload.
  * d/t/run-tests.sh: Don't stop non-existing testcontroller service.

 -- Frode Nordahl <email address hidden>  Thu, 30 Nov 2023 06:51:51 +0100
Superseded in noble-proposed 
openvswitch (3.2.2~git20231029-1) unstable; urgency=medium

  [ Thomas Goirand ]
  * Add architecture-is-64-bit, making the package build only for 64 bits and
    dropping 32 bits support.
  * Drop non-64 bits test blacklists from d/rules.
  * Cleans better.

  [ Frode Nordahl ]
  * Update upstream source from tag 'upstream/3.2.2_git20231029'
  * d/p/*: Drop patches included in new upstream version.
  * d/control: Bump dpdk dependency (LP: #2040097).
  * d/t/*-skip-tests.txt: Add flaky test to list.
  * d/rules: Provide source tree directly under /usr/src/openvswitch
    instead of providing a .tar.gz archive to fix reproducible build issue.
  * Drop init wiring of testcontroller and vtep emulator (Closes: #1039304).
    - The openvswitch-testcontroller and openvswitch-vtep binary packages
      contain daemons/scripts useful for development and testing.
    - Drop associated init scripts in preparation for deprecation of the
      transitional sysv-init-to-unit generator, as it would be non-trivial
      to convert these to systemd services.
    - An adapted version of the init script will be retained in
      /etc/openvswitch-testcontroller and /etc/openvswitch-vtep and can be
      used for manual control of the test services.

 -- Thomas Goirand <email address hidden>  Mon, 27 Nov 2023 10:16:21 +0100
Superseded in focal-updates
Superseded in focal-security 
openvswitch (2.13.8-0ubuntu1.3) focal-security; urgency=medium

  * SECURITY UPDATE: improper flow lookup when handling specific final stage
    flow wildcards.
    - debian/patches/CVE-2023-5366.patch: seen bits from final stage added
      into stages map to get all necessary wildcards in lib/classifier.c.
    - CVE-2023-5366

 -- Evan Caville <email address hidden>  Mon, 20 Nov 2023 15:38:12 +0200
Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.2.0-2build1) noble; urgency=medium

  * No-change rebuild with Python 3.12 as supported version

 -- Graham Inggs <email address hidden>  Wed, 01 Nov 2023 08:58:22 +0000
Superseded in jammy-updates
Deleted in jammy-proposed (Reason: moved to -updates) 
openvswitch (2.17.8-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream point release (LP: #2039908).

 -- Frode Nordahl <email address hidden>  Fri, 20 Oct 2023 05:56:31 +0000
Published in lunar-updates
Deleted in lunar-proposed (Reason: moved to -updates) 
openvswitch (3.1.3-0ubuntu0.23.04.1) lunar; urgency=medium

  * New upstream point release (LP: #2039907).

 -- Frode Nordahl <email address hidden>  Fri, 20 Oct 2023 05:48:27 +0000
Superseded in mantic-updates
Deleted in mantic-proposed (Reason: moved to -updates) 
openvswitch (3.2.1-0ubuntu0.23.10.1) mantic; urgency=medium

  * New upstream point release (LP: #2039906).
  * d/p/docs-*: Drop, included in point release.
  * d/p/lib-fatal-signal-Drop-logging-of-failed-dummy-backtr.patch: Drop,
    included in point release.
  * d/p/tests*.patch: Cherry-pick in-flight patches for tests that fixes
    autopkgtest failures.
  * d/t/*-skip-tests.txt: Add flaky test to list.

 -- Frode Nordahl <email address hidden>  Sun, 22 Oct 2023 11:20:53 +0200
Superseded in noble-release
Deleted in noble-proposed (Reason: Moved to noble) 
openvswitch (3.2.0-2) unstable; urgency=medium

  * Team upload.
  * d/p/tests-Fix-time-dependency-in-overlapping-flows-modification-
    test..patch: Fix riscv64 build failure.

 -- Frode Nordahl <email address hidden>  Mon, 28 Aug 2023 16:24:15 +0200

Available diffs

Superseded in noble-release
Published in mantic-release
Deleted in mantic-proposed (Reason: Moved to mantic) 
openvswitch (3.2.0-1) unstable; urgency=medium

  * Team upload.
  * Update upstream source from tag 'upstream/3.2.0'
  * d/p/docs-*: Update patch for #1042358.
  * d/p/lib-fatal-signal-Drop-logging-of-failed-dummy-backtr.patch: Drop
    unnecessary debug logging to fix armhf build (LP: #2032623).

 -- Frode Nordahl <email address hidden>  Tue, 22 Aug 2023 10:43:20 +0200

Available diffs

Superseded in mantic-release
Deleted in mantic-proposed (Reason: Moved to mantic) 
openvswitch (3.1.2-4) unstable; urgency=medium

  * Fix ifupdown.sh (Closes: #1039601).

 -- Thomas Goirand <email address hidden>  Fri, 11 Aug 2023 11:15:19 +0200

Available diffs

Superseded in mantic-proposed 
openvswitch (3.1.2-2) unstable; urgency=medium

  * Add patches from Colin Watson to repair the docs (Closes: #1042358):
    - docs-1-Wrap_more_table_entries_in_text_blocks.patch
    - docs-2-Shorten_overly-wide_table_heading.patch
    - docs-3-Tweak_width_of_name_column_in_field_property.patch
    - docs-4-Fix_rendering_of_VLAN_Comparison_Chart.patch
    - docs-5-Run_tbl_preprocessor_in_manpage-check_rule.patch

 -- Thomas Goirand <email address hidden>  Mon, 07 Aug 2023 16:57:37 +0200

Available diffs

Superseded in jammy-updates
Deleted in jammy-proposed (Reason: moved to -updates) 
openvswitch (2.17.7-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version 2.17.7 (LP: #2025323).

 -- Frode Nordahl <email address hidden>  Thu, 29 Jun 2023 17:51:04 +0200
Superseded in lunar-updates
Deleted in lunar-proposed (Reason: moved to -updates) 
openvswitch (3.1.2-0ubuntu0.23.04.1) lunar; urgency=medium

  * Update upstream source from tag 'upstream/3.1.2' (LP: #2025319).
  * d/p/CVE-2023-1668_ofproto-dpif-xlate_Always_mask_ip_proto_field.patch:
    Drop, included in new upstream version.
  * d/gbp.conf: Set appropriate branch for Lunar.

 -- Frode Nordahl <email address hidden>  Thu, 29 Jun 2023 15:25:10 +0200
Superseded in mantic-release
Deleted in mantic-proposed (Reason: Moved to mantic) 
openvswitch (3.1.2-1) unstable; urgency=medium

  * Team upload.
  * Update upstream source from tag 'upstream/3.1.2'.
  * d/p/CVE-2023-1668_ofproto-dpif-xlate_Always_mask_ip_proto_field.patch:
    Drop, included in new upstream version.
  * d/control: Add libnuma-dev on s390x for AF_XDP.
  * d/p/drop-old-autopkgtest: Drop old autopkgtest.
  * debian/tests: Run upstream system tests as autopkgtests.

 -- Frode Nordahl <email address hidden>  Tue, 27 Jun 2023 19:13:06 +0200
Published in bionic-updates
Published in bionic-security 
openvswitch (2.9.8-0ubuntu0.18.04.5) bionic-security; urgency=medium

  * SECURITY UPDATE: remote traffic denial of service via crafted packets
    with IP proto 0
    - debian/patches/CVE-2023-1668.patch: Always mask ip proto field in
      include/openvswitch/meta-flow.h, lib/meta-flow.c,
      ofproto/ofproto-dpif-xlate.c, tests/ofproto-dpif.at,
      tests/packet-type-aware.at.
    - CVE-2023-1668

 -- Marc Deslauriers <email address hidden>  Wed, 12 Apr 2023 15:03:23 -0400
Superseded in jammy-updates
Superseded in jammy-security 
openvswitch (2.17.5-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: remote traffic denial of service via crafted packets
    with IP proto 0
    - debian/patches/CVE-2023-1668.patch: Always mask ip proto field in
      include/openvswitch/meta-flow.h, lib/meta-flow.c,
      ofproto/ofproto-dpif-xlate.c, tests/ofproto-dpif.at,
      tests/ofproto.at, tests/packet-type-aware.at.
    - CVE-2023-1668

 -- Marc Deslauriers <email address hidden>  Thu, 13 Apr 2023 09:48:01 -0400
Superseded in focal-updates
Superseded in focal-security 
openvswitch (2.13.8-0ubuntu1.2) focal-security; urgency=medium

  * SECURITY UPDATE: remote traffic denial of service via crafted packets
    with IP proto 0
    - debian/patches/CVE-2023-1668.patch: Always mask ip proto field in
      include/openvswitch/meta-flow.h, lib/meta-flow.c,
      ofproto/ofproto-dpif-xlate.c, tests/ofproto-dpif.at,
      tests/ofproto.at, tests/packet-type-aware.at.
    - CVE-2023-1668

 -- Marc Deslauriers <email address hidden>  Wed, 12 Apr 2023 14:58:36 -0400
Obsolete in kinetic-updates
Obsolete in kinetic-security 
openvswitch (3.0.3-0ubuntu0.22.10.3) kinetic-security; urgency=medium

  * SECURITY UPDATE: remote traffic denial of service via crafted packets
    with IP proto 0
    - debian/patches/CVE-2023-1668.patch: Always mask ip proto field in
      include/openvswitch/meta-flow.h, lib/meta-flow.c,
      ofproto/ofproto-dpif-xlate.c, tests/ofproto-dpif.at,
      tests/ofproto.at, tests/packet-type-aware.at.
    - CVE-2023-1668

 -- Marc Deslauriers <email address hidden>  Wed, 12 Apr 2023 09:38:44 -0400
Superseded in mantic-release
Published in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
openvswitch (3.1.0-1ubuntu1) lunar; urgency=medium

  * SECURITY UPDATE: remote traffic denial of service via crafted packets
    with IP proto 0
    - debian/patches/CVE-2023-1668.patch: Always mask ip proto field in
      include/openvswitch/meta-flow.h, lib/meta-flow.c,
      ofproto/ofproto-dpif-xlate.c, tests/ofproto-dpif.at,
      tests/ofproto.at, tests/packet-type-aware.at.
    - CVE-2023-1668

 -- Marc Deslauriers <email address hidden>  Wed, 12 Apr 2023 09:34:14 -0400
Deleted in jammy-proposed (Reason: moved to -updates) 
openvswitch (2.17.5-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version 2.17.5 (LP: #2003060).
  * d/p/0001-ovsdb-idl-Support-write-only-changed-IDL-monitor-mod.patch: Refresh.
  * d/p/CVE-2022-433x.patch: Drop, included in 2.17.5 point release.

 -- Frode Nordahl <email address hidden>  Tue, 28 Mar 2023 13:31:06 +0100
Superseded in focal-updates
Superseded in focal-security 
openvswitch (2.13.8-0ubuntu1.1) focal-security; urgency=medium

  * SECURITY UPDATE: issues in Organization Specific TLV
    - debian/patches/CVE-2022-433x.patch: fix bugs when parsing malformed
      AutoAttach in lib/lldp/lldp.c, tests/ofproto-dpif.at.
    - CVE-2022-4337
    - CVE-2022-4338

 -- Marc Deslauriers <email address hidden>  Wed, 22 Feb 2023 08:56:25 -0500
Superseded in bionic-updates
Superseded in bionic-security 
openvswitch (2.9.8-0ubuntu0.18.04.4) bionic-security; urgency=medium

  * SECURITY UPDATE: issues in Organization Specific TLV
    - debian/patches/CVE-2022-433x.patch: fix bugs when parsing malformed
      AutoAttach in lib/lldp/lldp.c, tests/ofproto-dpif.at.
    - CVE-2022-4337
    - CVE-2022-4338

 -- Marc Deslauriers <email address hidden>  Wed, 22 Feb 2023 08:56:54 -0500
Superseded in jammy-updates
Superseded in jammy-security 
openvswitch (2.17.3-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: issues in Organization Specific TLV
    - debian/patches/CVE-2022-433x.patch: fix bugs when parsing malformed
      AutoAttach in lib/lldp/lldp.c, tests/ofproto-dpif.at.
    - CVE-2022-4337
    - CVE-2022-4338

 -- Marc Deslauriers <email address hidden>  Wed, 22 Feb 2023 08:52:02 -0500
Superseded in kinetic-updates
Superseded in kinetic-security 
openvswitch (3.0.3-0ubuntu0.22.10.2) kinetic-security; urgency=medium

  * No change rebuild in -security pocket as new version contains fix for
    CVE-2022-4337 and CVE-2022-4338.

 -- Marc Deslauriers <email address hidden>  Wed, 22 Feb 2023 08:50:59 -0500
Superseded in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
openvswitch (3.1.0-1) unstable; urgency=medium

  [ Luca Boccassi ]
  * Drop dependencies on lsb-base, deprecated
  * Bump Standards-Version to 4.6.2, no changes

  [ Frode Nordahl ]
  * Update upstream source from tag 'upstream/3.1.0'
  * d/rules: Set branch for snapshots to branch-3.1.
  * d/debian/openvswitch-switch.install, d/debian/openvswitch-
    test.install: Move USDT scripts to test package.

 -- Luca Boccassi <email address hidden>  Tue, 21 Feb 2023 22:02:16 +0000
Superseded in kinetic-updates
Deleted in kinetic-proposed (Reason: moved to -updates) 
openvswitch (3.0.3-0ubuntu0.22.10.1) kinetic; urgency=medium

  * New upstream version 3.0.3 (LP: #2003059).

 -- Frode Nordahl <email address hidden>  Tue, 17 Jan 2023 10:13:06 +0100
Superseded in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
openvswitch (3.1.0~git20230108.006e1c6-1ubuntu1) lunar; urgency=medium

  * d/control, d/rules: Temporarily disable AF_XDP, awaiting MIR for xdp-tools
    package (LP: #2002103).
Superseded in lunar-proposed 
openvswitch (3.1.0~git20230108.006e1c6-1) unstable; urgency=medium

  * Update upstream source from tag 'upstream/3.1.0_git20230108.006e1c6'.
  * d/p/CVE-2022-4337and8: Drop, included in snapshot.
  * d/p/af-xdp*: Drop, included in snapshot.
  * d/openvswitch-switch.install: Add USDT scripts.

 -- Frode Nordahl <email address hidden>  Mon, 09 Jan 2023 07:47:45 +0100
Superseded in lunar-proposed 
openvswitch (3.1.0~git20221212.739bcf2-4) unstable; urgency=high

  * Add dpdk support for riscv64 (Closes: #1027329).
  * CVE-2022-4337 & CVE-2022-4338: Out-of-Bounds Read and Integer Underflow in
    Organization Specific TLV. Added upstream patches (Closes: #1027273).

 -- Thomas Goirand <email address hidden>  Tue, 03 Jan 2023 10:06:22 +0100
Superseded in lunar-proposed 
openvswitch (3.0.1-0ubuntu2) lunar; urgency=medium

  * No-change rebuild with Python 3.11 as default

 -- Graham Inggs <email address hidden>  Mon, 26 Dec 2022 10:00:01 +0000

Available diffs

Superseded in jammy-updates
Deleted in jammy-proposed (Reason: moved to -updates) 
openvswitch (2.17.3-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream point release 2.17.3 (LP: #1995289).
  * d/p/python-Do-not-send-non-zero-flag-for-a-SSL-socket.patch:
    Drop, included in 2.17.3 point release.

 -- Frode Nordahl <email address hidden>  Mon, 31 Oct 2022 16:49:22 +0100
Superseded in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
openvswitch (3.0.1-0ubuntu1) lunar; urgency=medium

  * New upstream point release 3.0.1 (LP: #1995288).

 -- Frode Nordahl <email address hidden>  Sun, 06 Nov 2022 18:55:47 +0000

Available diffs

Superseded in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
openvswitch (3.0.0-0ubuntu2) lunar; urgency=medium

  * No-change rebuild with Python 3.11 as supported

 -- Graham Inggs <email address hidden>  Wed, 02 Nov 2022 15:05:29 +0000

Available diffs

Superseded in kinetic-updates
Deleted in kinetic-proposed (Reason: moved to -updates) 
openvswitch (3.0.1-0ubuntu0.22.10.1) kinetic; urgency=medium

  * New upstream point release 3.0.1 (LP: #1995288).

 -- Frode Nordahl <email address hidden>  Mon, 31 Oct 2022 16:52:28 +0100
Superseded in bionic-updates
Superseded in bionic-security 
openvswitch (2.9.8-0ubuntu0.18.04.3) bionic-security; urgency=medium

  * SECURITY UPDATE: heap buffer over-read
    - debian/patches/CVE-2022-32166.patch: avoid unsafe comparison of
      minimasks in lib/flow.c.
    - CVE-2022-32166

 -- Marc Deslauriers <email address hidden>  Wed, 05 Oct 2022 11:18:00 -0400
Superseded in jammy-updates
Deleted in jammy-proposed (Reason: moved to -updates) 
openvswitch (2.17.2-0ubuntu0.22.04.2) jammy; urgency=medium

  * d/p/python-Do-not-send-non-zero-flag-for-a-SSL-socket.patch:
    Do not send non-zero flag for a SSL socket. (LP: #1985062)

 -- Edward Hope-Morley <email address hidden>  Wed, 28 Sep 2022 11:59:10 +0100
Superseded in lunar-release
Obsolete in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
openvswitch (3.0.0-0ubuntu1) kinetic; urgency=medium

  [ Frode Nordahl ]
  * New upstream version 3.0.0
  * Merge packaging from Debian.
  * d/openvswitch-common.install: Add OVSDB local-config man page
    and ovsschema.
  * d/control: python3-openvswitch is now an architecture dependent
    package.
  * d/rules: Fix linkage of the python C extension.
  * d/rules: Refresh skip test list for ppc64el.
  * d/copyright: Drop superfluous file patterns.

  [ James Page ]
  * d/control: Add missing shlib:Depends for python3-openvswitch.
  * d/control: openvswitch-ipsec -> python3-openvswitch binary:Version
    due to switch to architecture specific Python module.
Superseded in focal-updates
Deleted in focal-proposed (Reason: moved to -updates) 
openvswitch (2.13.8-0ubuntu1) focal; urgency=medium

  * New upstream point release (LP: #1980213).

 -- Frode Nordahl <email address hidden>  Mon, 04 Jul 2022 10:01:53 +0100
Superseded in jammy-updates
Deleted in jammy-proposed (Reason: moved to -updates) 
openvswitch (2.17.2-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream point release (LP: #1980211).
  * d/p/0001-ovsdb-idl-Support-write-only-changed-IDL-monitor-mod.patch:
    Cherry pick feature to improve scalability and performance which is
    required for OVN 22.03.1 (LP: #1980809).

 -- Frode Nordahl <email address hidden>  Wed, 20 Jul 2022 14:35:11 +0200
Superseded in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
openvswitch (3.0.0~git20220718.e2e8d7c-0ubuntu1) kinetic; urgency=medium

  * New upstream snapshot from 3.0 release branch.
  * d/copyright: Tidy for removal of datapath component.
  * d/rules: Enable native json extension for OVS Python module
    (LP: #1982002).
  * d/rules: Drop obsolete installation for Python 2 versions.

 -- James Page <email address hidden>  Mon, 18 Jul 2022 16:43:55 +0100
Superseded in kinetic-release
Published in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
openvswitch (2.17.0-0ubuntu1) jammy; urgency=medium

  * New upstream release.
  * d/control: Switch to using debhelper-compat for debhelper
    versioning.

 -- James Page <email address hidden>  Fri, 18 Feb 2022 10:20:30 +0000
Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
openvswitch (2.17.0~git20220121.109d024-0ubuntu1) jammy; urgency=medium

  * New snapshot in preparation for 2.17 release.
  * d/rules: Use branch-2.17 for snapshots.

 -- James Page <email address hidden>  Thu, 03 Feb 2022 15:35:46 +0000
Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
openvswitch (2.17.0~git20220118.1b9fd88-0ubuntu1) jammy; urgency=medium

  * New snapshot in preparation for 2.17 release.

 -- James Page <email address hidden>  Wed, 19 Jan 2022 13:06:05 +0000
Superseded in focal-updates
Deleted in focal-proposed (Reason: moved to -updates) 
openvswitch (2.13.5-0ubuntu1) focal; urgency=medium

  * New upstream point release (LP: #1956754).
  * d/p/ovs-dev-ovs-ctl-Allow-recording-hostname-separately.patch: Drop,
    included in release.
  * d/p/py3-compat.patch: Refresh, various fixes included in point
    release.
  * d/p/CVE-2021-36980.patch: Drop, included in release.

 -- James Page <email address hidden>  Thu, 13 Jan 2022 10:57:22 +0000
Obsolete in impish-updates
Obsolete in impish-security 
openvswitch (2.16.0-0ubuntu2.1) impish-security; urgency=medium

  * SECURITY UPDATE: memory leak via fragmented packets
    - debian/patches/CVE-2021-3905.patch: release unhandled packets from
      the batch in lib/ipf.c.
    - CVE-2021-3905

 -- Marc Deslauriers <email address hidden>  Fri, 14 Jan 2022 09:04:33 -0500
Deleted in hirsute-proposed (Reason: Hirsute is EOL; packages will no longer migrate from -pro...) 
openvswitch (2.15.2-0ubuntu1) hirsute; urgency=medium

  * New upstream point release (LP: #1956752).
  * d/p/CVE-2021-36980.patch: Dropped, included in release.
  * d/p/ovs-dev-ovs-ctl-Allow-recording-hostname-separately.patch:
    Dropped, included in release.
  * d/p/py3-compat.patch: Refresh.

 -- James Page <email address hidden>  Fri, 07 Jan 2022 10:42:22 +0000
Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
openvswitch (2.17.0~git20220105.0d1ffb7-0ubuntu1) jammy; urgency=medium

  * New snapshot in preparation for 2.17 release.
  * d/p/*: Drop patches included in upstream snapshot.
  * d/control: Bump DPDK version to 21.11.
  * d/rules: Refresh skip test list for armhf.

 -- James Page <email address hidden>  Thu, 06 Jan 2022 14:12:22 +0000
Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
openvswitch (2.16.0-0ubuntu4) jammy; urgency=medium

  * d/p/netlink-add-parsing-link-layer.patch: Add support for parsing of
    link layer addresses via netlink.
  * d/control: Add iproute2 to Build-Depends.
  * d/p/tests-Handle-endianness-in-netlink-policy-test.patch: Cherry
    pick endian fix for netlink tests.

 -- James Page <email address hidden>  Tue, 23 Nov 2021 12:24:59 +0000
Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
openvswitch (2.16.0-0ubuntu3) jammy; urgency=medium

  * No-change rebuild to add python3.10.

 -- Matthias Klose <email address hidden>  Sat, 16 Oct 2021 06:57:14 +0000

Available diffs

Superseded in jammy-release
Obsolete in impish-release
Deleted in impish-proposed (Reason: Moved to impish) 
openvswitch (2.16.0-0ubuntu2) impish; urgency=medium

  * d/p/ovsdb-idl-Add-APIs-to-query.patch: Cherry pick fix to add
    new API's to query if a table or column is present, required for OVN
    > 21.09.0~.

 -- James Page <email address hidden>  Thu, 23 Sep 2021 09:17:52 +0100
Superseded in impish-release
Deleted in impish-proposed (Reason: Moved to impish) 
openvswitch (2.16.0-0ubuntu1) impish; urgency=medium

  * New upstream release.

 -- James Page <email address hidden>  Tue, 17 Aug 2021 10:53:42 +0100
Superseded in focal-updates
Superseded in focal-security 
openvswitch (2.13.3-0ubuntu0.20.04.2) focal-security; urgency=medium

  * SECURITY UPDATE: use-after-free in decode_NXAST_RAW_ENCAP
    - debian/patches/CVE-2021-36980.patch: get a new pointer before using
      in lib/ofp-actions.c.
    - CVE-2021-36980

 -- Marc Deslauriers <email address hidden>  Mon, 26 Jul 2021 13:04:37 -0400
Obsolete in hirsute-updates
Obsolete in hirsute-security 
openvswitch (2.15.0-0ubuntu3.1) hirsute-security; urgency=medium

  * SECURITY UPDATE: use-after-free in decode_NXAST_RAW_ENCAP
    - debian/patches/CVE-2021-36980.patch: get a new pointer before using
      in lib/ofp-actions.c.
    - CVE-2021-36980

 -- Marc Deslauriers <email address hidden>  Mon, 26 Jul 2021 13:01:47 -0400
Superseded in impish-release
Deleted in impish-proposed (Reason: Moved to impish) 
openvswitch (2.16.0~git20210719.45bd6d93f-0ubuntu1) impish; urgency=medium

  * New upstream snapshot from 2.16 release branch.
  * d/p/ovs-dirs.patch: Drop, included in snapshot.
  * d/p/*: Refresh.

 -- James Page <email address hidden>  Tue, 20 Jul 2021 10:58:12 +0100
Superseded in impish-release
Deleted in impish-proposed (Reason: Moved to impish) 
openvswitch (2.15.1-0ubuntu1) impish; urgency=medium

  [ Christian Ehrhardt ]
  * New upstream minor release 2.15.1
  * drop d/p/ovs-dev-ovs-ctl-Allow-recording-hostname-separately.patch which
    is upstream in 2.15.1
  * d/control: python3-six bdep is no more needed
  * drop d/p/py3-compat.patch as upstream switched to python3 in 2.15.1

  [ James Page ]
  * d/ifupdown.sh: Correct paths for systemctl and the
    openvswitch-switch systemd unit for ifupdown integration
    (LP: #1731916).

 -- Christian Ehrhardt <email address hidden>  Tue, 13 Jul 2021 14:58:38 +0200
Superseded in impish-release
Deleted in impish-proposed (Reason: Moved to impish) 
openvswitch (2.15.0-0ubuntu4) impish; urgency=medium

  * Re-introduce openvswitch-ipsec package (LP: #1912610):
    - d/control: Add openvswitch-ipsec with relevant dependencies.
    - d/openvswitch-ipsec.*: Install ipsec monitor script and provide
      systemd service for this feature.
    - d/p/ovs-ctl-ipsec.patch: Skip monitoring of ipsec daemon as
      systemd will do this.
  * d/rules: Drop redundant usage of --with=systemd.
  * d/copyright: Tidy to remove usage of tabs.
  * d/p/ovs-dirs.patch: Cherry pick fix to ensure that Python module
    uses configured runtime directories.

 -- James Page <email address hidden>  Wed, 30 Jun 2021 10:21:21 +0100
Obsolete in groovy-updates
Deleted in groovy-proposed (Reason: moved to -updates) 
openvswitch (2.13.3-0ubuntu0.20.10.1) groovy; urgency=medium

  [ James Page ]
  * New upstream point release (LP: #1920141, LP: #1907686):
    - d/p/*: Refresh including drop of part of patch as equivalent
      changes included in point release.
    - Dropped security patches, included in release:
      + CVE-2015-8011.patch
      + CVE-2020-27827.patch
      + CVE-2020-35498.patch
  * Add BD on libdbus-1-dev to resolve linking issues for DPDK builds due
    to changes in DPDK.
  * d/control: Set minimum version of libdpdk-dev to avoid build
    failures with 19.11.6-0ubuntu0.20.10.1.

  [ Frode Nordahl ]
  * Fix recording of FQDN/hostname on startup (LP: #1915829):
    - d/p/ovs-dev-ovs-ctl-Allow-recording-hostname-separately.patch: Cherry
      pick of committed upstream fix to support skip of hostname
      configuration on ovs-vswitchd/ovsdb-server startup.
    - d/openvswitch-switch.ovs-record-hostname.service: Record hostname in
      Open vSwitch after network-online.target using new systemd unit.
    - d/openvswitch-switch.ovs-vswitchd.service: Pass `--no-record-hostname`
      option to `ovs-ctl` to delegate recording of hostname to the separate
      service.
    - d/openvswitch-switch.ovsdb-server.service: Pass `--no-record-hostname`
      option to `ovs-ctl` to delegate recording of hostname to the separate
      service.
    - d/openvswitch-switch.service: Add `Also` reference to
      ovs-record-hostname.service so that the service is enabled on install.
    - d/rules: Add `ovs-record-hostname.service` to package build.

 -- James Page <email address hidden>  Wed, 24 Mar 2021 08:46:06 +0000
Superseded in focal-updates
Deleted in focal-proposed (Reason: moved to -updates) 
openvswitch (2.13.3-0ubuntu0.20.04.1) focal; urgency=medium

  [ James Page ]
  * New upstream point release (LP: #1920141, LP: #1907686).
  * Dropped security patches, included in release:
    - CVE-2015-8011.patch
    - CVE-2020-27827.patch
    - CVE-2020-35498.patch
  * Add BD on libdbus-1-dev to resolve linking issues for DPDK builds due
    to changes in DPDK.
  * d/control: Set minimum version of libdpdk-dev to avoid build
    failures with 19.11.6-0ubuntu0.20.04.1.

  [ Frode Nordahl ]
  * Fix recording of FQDN/hostname on startup (LP: #1915829):
    - d/p/ovs-dev-ovs-ctl-Allow-recording-hostname-separately.patch: Cherry
      pick of committed upstream fix to support skip of hostname
      configuration on ovs-vswitchd/ovsdb-server startup.
    - d/openvswitch-switch.ovs-record-hostname.service: Record hostname in
      Open vSwitch after network-online.target using new systemd unit.
    - d/openvswitch-switch.ovs-vswitchd.service: Pass `--no-record-hostname`
      option to `ovs-ctl` to delegate recording of hostname to the separate
      service.
    - d/openvswitch-switch.ovsdb-server.service: Pass `--no-record-hostname`
      option to `ovs-ctl` to delegate recording of hostname to the separate
      service.
    - d/openvswitch-switch.service: Add `Also` reference to
      ovs-record-hostname.service so that the service is enabled on install.
    - d/rules: Add `ovs-record-hostname.service` to package build.

 -- James Page <email address hidden>  Wed, 24 Mar 2021 08:46:41 +0000
175 of 272 results FirstPreviousLast