This bug was fixed in the package openvswitch - 2.5.9-0ubuntu0.16.04.2
--------------- openvswitch (2.5.9-0ubuntu0.16.04.2) xenial-security; urgency=medium
* SECURITY UPDATE: buffer overflow decoding malformed packets in lldp - debian/patches/CVE-2015-8011.patch: check lengths in lib/lldp/lldp.c. - CVE-2015-8011 * SECURITY UPDATE: Externally triggered memory leak in lldp - debian/patches/CVE-2020-27827.patch: properly free memory in lib/lldp/lldp.c. - CVE-2020-27827
-- Marc Deslauriers <email address hidden> Fri, 08 Jan 2021 07:30:54 -0500
This bug was fixed in the package openvswitch - 2.5.9-0ubuntu0. 16.04.2
--------------- 0ubuntu0. 16.04.2) xenial-security; urgency=medium
openvswitch (2.5.9-
* SECURITY UPDATE: buffer overflow decoding malformed packets in lldp patches/ CVE-2015- 8011.patch: check lengths in lib/lldp/lldp.c. patches/ CVE-2020- 27827.patch: properly free memory in lldp/lldp. c.
- debian/
- CVE-2015-8011
* SECURITY UPDATE: Externally triggered memory leak in lldp
- debian/
lib/
- CVE-2020-27827
-- Marc Deslauriers <email address hidden> Fri, 08 Jan 2021 07:30:54 -0500