Red Hat Security Advisory: ovn-2021 security update
OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add native support for virtual network abstractions, such as virtual L2 and L3 overlays and security groups. Security Fix(es): * ovn: ovn: Heap Over-Read in ICMP Error Response Generation - security issue (CVE-2026-5265) * ovn: OVN: Information disclosure via crafted DHCPv6 packets (CVE-2026-5367) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
AI Analysis
Technical Summary
OVN, a system supporting virtual network abstraction, had two security issues fixed in the ovn-2021 package. CVE-2026-5265 is a heap over-read vulnerability in ICMP error response generation, classified under CWE-130. CVE-2026-5367 involves information disclosure triggered by specially crafted DHCPv6 packets. These vulnerabilities impact Red Hat Enterprise Linux Fast Datapath 8 versions on multiple hardware platforms. Red Hat Product Security rated the update as Important and has provided updated packages to remediate these issues. The advisory references Red Hat's errata RHSA-2026:11694 for detailed patch information.
Potential Impact
The heap over-read vulnerability could potentially cause application crashes or expose memory contents during ICMP error response processing. The information disclosure vulnerability could allow an attacker to obtain sensitive information by sending crafted DHCPv6 packets. Both vulnerabilities pose a high security risk as rated by Red Hat, potentially impacting the confidentiality and stability of systems running affected OVN versions. There are no reports of active exploitation in the wild.
Mitigation Recommendations
Red Hat has released updated ovn-2021 packages for Red Hat Enterprise Linux Fast Datapath 8 that address these vulnerabilities. Users should apply these official patches as detailed in Red Hat advisory RHSA-2026:11694 and the referenced update article (https://access.redhat.com/articles/11258). Since this is not a cloud service, remediation requires manual update by system administrators. Patch status is confirmed by the vendor advisory.
Red Hat Security Advisory: ovn-2021 security update
Description
OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add native support for virtual network abstractions, such as virtual L2 and L3 overlays and security groups. Security Fix(es): * ovn: ovn: Heap Over-Read in ICMP Error Response Generation - security issue (CVE-2026-5265) * ovn: OVN: Information disclosure via crafted DHCPv6 packets (CVE-2026-5367) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
OVN, a system supporting virtual network abstraction, had two security issues fixed in the ovn-2021 package. CVE-2026-5265 is a heap over-read vulnerability in ICMP error response generation, classified under CWE-130. CVE-2026-5367 involves information disclosure triggered by specially crafted DHCPv6 packets. These vulnerabilities impact Red Hat Enterprise Linux Fast Datapath 8 versions on multiple hardware platforms. Red Hat Product Security rated the update as Important and has provided updated packages to remediate these issues. The advisory references Red Hat's errata RHSA-2026:11694 for detailed patch information.
Potential Impact
The heap over-read vulnerability could potentially cause application crashes or expose memory contents during ICMP error response processing. The information disclosure vulnerability could allow an attacker to obtain sensitive information by sending crafted DHCPv6 packets. Both vulnerabilities pose a high security risk as rated by Red Hat, potentially impacting the confidentiality and stability of systems running affected OVN versions. There are no reports of active exploitation in the wild.
Mitigation Recommendations
Red Hat has released updated ovn-2021 packages for Red Hat Enterprise Linux Fast Datapath 8 that address these vulnerabilities. Users should apply these official patches as detailed in Red Hat advisory RHSA-2026:11694 and the referenced update article (https://access.redhat.com/articles/11258). Since this is not a cloud service, remediation requires manual update by system administrators. Patch status is confirmed by the vendor advisory.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:11694
- Cve Count
- 2
- Additional Cves
- ["CVE-2026-5367"]
- Cvss Version
- null
Threat ID: 6a19febde29bf47b500fd98e
Added to database: 5/29/2026, 9:01:49 PM
Last enriched: 5/29/2026, 9:06:51 PM
Last updated: 5/31/2026, 4:59:02 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.