openvswitch - Debian Package Tracker

general

source: openvswitch (main)
version: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1
maintainer: Debian OpenStack (DMD)
uploaders: Simon Horman [DMD] – Michal Arbet [DMD] – Christian Ehrhardt [DMD] – Luca Boccassi [DMD] – Thomas Goirand [DMD]
arch: all
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.15.0+ds1-2+deb11u5
o-o-sec: 2.15.0+ds1-2+deb11u5
oldstable: 3.1.0-2+deb12u1
old-sec: 3.1.0-2+deb12u1
stable: 3.5.0-1
testing: 3.6.0-7
unstable: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1

versioned links

2.15.0+ds1-2+deb11u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.1.0-2+deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.5.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.6.0-7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

openvswitch-common
openvswitch-doc
openvswitch-ipsec
openvswitch-pki
openvswitch-source
openvswitch-switch
openvswitch-switch-dpdk
openvswitch-test
openvswitch-testcontroller
openvswitch-vtep
python3-openvswitch

action needed

A new upstream version is available: 3.7.0 high

A new upstream version 3.7.0 is available, you should consider packaging it.

Created: 2026-02-17 Last update: 2026-02-17 12:30

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2019-25076: The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

Created: 2022-09-09 Last update: 2026-02-16 10:52

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2019-25076: The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

Created: 2025-08-09 Last update: 2026-02-16 10:52

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2026-01-15 Last update: 2026-02-17 12:31

lintian reports 23 warnings normal

Lintian reports 23 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-08-21 Last update: 2026-02-16 15:18

Multiarch hinter reports 2 issue(s) low

There are issues with the multiarch metadata for this package.

openvswitch-doc could be marked Multi-Arch: foreign
openvswitch-source could be marked Multi-Arch: foreign

Created: 2021-02-21 Last update: 2026-02-17 12:31

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2019-25076: (postponed; to be fixed through a stable update) The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2026-02-16 10:52

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2019-25076: (postponed; to be fixed through a stable update) The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

You can find information about how to handle this issue in the security team's documentation.

Created: 2023-06-10 Last update: 2026-02-16 10:52

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.3 instead of 4.6.2).

Created: 2024-04-07 Last update: 2026-02-16 10:56

testing migrations

excuses:
- Migration status for openvswitch (3.6.0-7 to 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Autopkgtest for netplan.io: amd64: Test triggered, arm64: Test triggered, ppc64el: Test triggered, riscv64: Test triggered (failure will be ignored), s390x: Test triggered
- ∙ ∙ Autopkgtest for openvswitch: amd64: Test triggered, arm64: Test triggered, ppc64el: Test triggered, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for ovn: amd64: Test triggered, arm64: Test triggered, ppc64el: Test triggered, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for ovn-bgp-agent: amd64: Test triggered, arm64: Test triggered, ppc64el: Test triggered, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for ovn-octavia-provider: amd64: Test triggered, arm64: Test triggered, ppc64el: Test triggered, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for python-os-ken: amd64: Test triggered, arm64: Test triggered, ppc64el: Test triggered, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for python-ovsdbapp: amd64: Test triggered, arm64: Test triggered, ppc64el: Test triggered, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Too young, only 3 of 5 days old
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/o/openvswitch.html
- ∙ ∙ Autopkgtest skipped on i386: not installable (which is allowed)
- ∙ ∙ Reproducible on amd64
- ∙ ∙ Reproducible on arm64
- ∙ ∙ Reproducible on armhf
- ∙ ∙ Reproducible on i386
- ∙ ∙ Reproducible on ppc64el
- Not considered

news

[rss feed]

[2026-02-13] Accepted openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1 (source) into unstable (Matteo Perin) (signed by: Luca Boccassi)
[2026-02-11] openvswitch 3.6.0-7 MIGRATED to testing (Debian testing watch)
[2026-02-08] Accepted openvswitch 3.6.0-7 (source) into unstable (Thomas Goirand)
[2025-12-09] openvswitch 3.6.0-6 MIGRATED to testing (Debian testing watch)
[2025-12-07] Accepted openvswitch 3.6.0-6 (source) into unstable (Thomas Goirand)
[2025-12-01] openvswitch 3.6.0-5 MIGRATED to testing (Debian testing watch)
[2025-11-28] Accepted openvswitch 3.6.0-5 (source) into unstable (Thomas Goirand)
[2025-11-28] Accepted openvswitch 3.6.0-3 (source) into unstable (Thomas Goirand)
[2025-08-25] openvswitch 3.6.0-2 MIGRATED to testing (Debian testing watch)
[2025-08-22] Accepted openvswitch 3.6.0-2 (source) into unstable (Thomas Goirand)
[2025-08-20] Accepted openvswitch 3.6.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2025-02-20] openvswitch 3.5.0-1 MIGRATED to testing (Debian testing watch)
[2025-02-18] Accepted openvswitch 3.5.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-12-21] openvswitch 3.5.0~git20241129.2af7cef-2 MIGRATED to testing (Debian testing watch)
[2024-12-16] Accepted openvswitch 3.5.0~git20241129.2af7cef-2 (source) into unstable (Luca Boccassi)
[2024-12-03] Accepted openvswitch 3.5.0~git20241129.2af7cef-1 (source) into experimental (Frode Nordahl) (signed by: Luca Boccassi)
[2024-08-21] openvswitch 3.4.0-1 MIGRATED to testing (Debian testing watch)
[2024-08-15] Accepted openvswitch 3.4.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-06-16] openvswitch 3.3.1-1 MIGRATED to testing (Debian testing watch)
[2024-06-10] Accepted openvswitch 3.3.1-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-05-25] openvswitch 3.3.0-5 MIGRATED to testing (Debian testing watch)
[2024-05-19] Accepted openvswitch 3.3.0-5 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-05-09] openvswitch 3.3.0-4 MIGRATED to testing (Debian testing watch)
[2024-05-02] Accepted openvswitch 3.3.0-4 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-04-30] Accepted openvswitch 3.3.0-3 (source) into unstable (Thomas Goirand)
[2024-04-29] Accepted openvswitch 3.3.0-2 (source) into unstable (Thomas Goirand)
[2024-03-18] Accepted openvswitch 2.15.0+ds1-2+deb11u5 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Thomas Goirand)
[2024-03-17] Accepted openvswitch 3.1.0-2+deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Thomas Goirand)
[2024-03-14] Accepted openvswitch 3.1.0-2+deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Thomas Goirand)
[2024-03-14] Accepted openvswitch 2.15.0+ds1-2+deb11u5 (source) into oldstable-security (Debian FTP Masters) (signed by: Thomas Goirand)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 23)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1
29 bugs