openvswitch - Debian Package Tracker

general

source: openvswitch (main)
version: 3.7.0-1
maintainer: Debian OpenStack (DMD)
uploaders: Simon Horman [DMD] – Thomas Goirand [DMD] – Christian Ehrhardt [DMD] – Luca Boccassi [DMD] – Michal Arbet [DMD]
arch: all
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.15.0+ds1-2+deb11u5
o-o-sec: 2.15.0+ds1-2+deb11u5
oldstable: 3.1.0-2+deb12u1
old-sec: 3.1.0-2+deb12u1
stable: 3.5.0-1
testing: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d3
unstable: 3.7.0-1

versioned links

2.15.0+ds1-2+deb11u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.1.0-2+deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.5.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.7.0~git20260211.8c6ebf8-1~1.gbp9127d3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.7.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

openvswitch-common
openvswitch-doc
openvswitch-ipsec
openvswitch-pki
openvswitch-source
openvswitch-switch
openvswitch-switch-dpdk
openvswitch-test
openvswitch-testcontroller
openvswitch-vtep
python3-openvswitch

action needed

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2019-25076: The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

Created: 2022-09-09 Last update: 2026-03-04 23:00

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2019-25076: The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

Created: 2025-08-09 Last update: 2026-03-04 23:00

The VCS repository is not up to date, push the missing commits. high

vcswatch reports that the current version of the package is not in its VCS.
Either you need to push your commits and/or your tags, or the information about the package's VCS are out of date. A common cause of the latter issue when using the Git VCS is not specifying the correct branch when the packaging is not in the default one (remote HEAD branch), which is usually "master" but can be modified in salsa.debian.org in the project's general settings with the "Default Branch" field). Alternatively the Vcs-Git field in debian/control can contain a "-b <branch-name>" suffix to indicate what branch is used for the Debian packaging.

Created: 2026-02-24 Last update: 2026-03-04 21:01

lintian reports 15 warnings normal

Lintian reports 15 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2026-03-05 Last update: 2026-03-05 12:00

Multiarch hinter reports 2 issue(s) low

There are issues with the multiarch metadata for this package.

openvswitch-doc could be marked Multi-Arch: foreign
openvswitch-source could be marked Multi-Arch: foreign

Created: 2021-02-21 Last update: 2026-03-05 18:46

debian/patches: 3 patches to forward upstream low

Among the 3 debian patches available in version 3.7.0-1 of the package, we noticed the following issues:

3 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2026-03-05 Last update: 2026-03-05 12:02

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2019-25076: (postponed; to be fixed through a stable update) The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2026-03-04 23:00

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2019-25076: (postponed; to be fixed through a stable update) The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

You can find information about how to handle this issue in the security team's documentation.

Created: 2023-06-10 Last update: 2026-03-04 23:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.3 instead of 4.6.2).

Created: 2024-04-07 Last update: 2026-03-05 01:01

testing migrations

excuses:
- Migration status for openvswitch (3.7.0~git20260211.8c6ebf8-1~1.gbp9127d3 to 3.7.0-1): BLOCKED: Maybe temporary, maybe blocked but Britney is missing information (check below)
- Issues preventing migration:
- ∙ ∙ Missing build on riscv64
- ∙ ∙ Autopkgtest deferred on riscv64: missing arch:riscv64 build
- ∙ ∙ Autopkgtest for netplan.io/1.1.2-8: amd64: Pass, arm64: Pass, ppc64el: Pass, s390x: Test triggered
- ∙ ∙ Autopkgtest for openvswitch/3.7.0-1: amd64: Pass, arm64: Pass, ppc64el: Pass, s390x: Test triggered
- ∙ ∙ Autopkgtest for ovn/26.03.0~git20260216.b543a88-3: amd64: No tests, superficial or marked flaky ♻ (reference ♻), arm64: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: No tests, superficial or marked flaky ♻, s390x: Test triggered
- ∙ ∙ Autopkgtest for ovn-bgp-agent/5.0.0-1: amd64: Pass, arm64: Pass, ppc64el: Pass, s390x: Test triggered
- ∙ ∙ Autopkgtest for ovn-octavia-provider/9.0.0-1: amd64: Pass, arm64: Pass, ppc64el: Pass, s390x: Test triggered
- ∙ ∙ Autopkgtest for python-os-ken/3.1.1-3: amd64: Pass, arm64: Pass, ppc64el: Pass, s390x: Test triggered
- ∙ ∙ Autopkgtest for python-ovsdbapp/2.13.0-3: amd64: Pass, arm64: Pass, ppc64el: Pass, s390x: Test triggered
- ∙ ∙ Lintian check waiting for test results on riscv64 - info
- ∙ ∙ Too young, only 1 of 5 days old
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/o/openvswitch.html
- ∙ ∙ Autopkgtest skipped on i386: not installable (which is allowed)
- ∙ ∙ Reproduced on amd64
- ∙ ∙ Reproduced on arm64
- ∙ ∙ Reproduced on armhf
- ∙ ∙ Reproduced on i386
- ∙ ∙ Reproduced on ppc64el
- Not considered

news

[rss feed]

[2026-03-04] Accepted openvswitch 3.7.0-1 (source) into unstable (Matteo Perin) (signed by: Luca Boccassi)
[2026-02-26] openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d3 MIGRATED to testing (Debian testing watch)
[2026-02-24] Accepted openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d3 (source) into unstable (Thomas Goirand)
[2026-02-23] Accepted openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d2 (source) into unstable (Thomas Goirand)
[2026-02-20] openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1 MIGRATED to testing (Debian testing watch)
[2026-02-13] Accepted openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1 (source) into unstable (Matteo Perin) (signed by: Luca Boccassi)
[2026-02-11] openvswitch 3.6.0-7 MIGRATED to testing (Debian testing watch)
[2026-02-08] Accepted openvswitch 3.6.0-7 (source) into unstable (Thomas Goirand)
[2025-12-09] openvswitch 3.6.0-6 MIGRATED to testing (Debian testing watch)
[2025-12-07] Accepted openvswitch 3.6.0-6 (source) into unstable (Thomas Goirand)
[2025-12-01] openvswitch 3.6.0-5 MIGRATED to testing (Debian testing watch)
[2025-11-28] Accepted openvswitch 3.6.0-5 (source) into unstable (Thomas Goirand)
[2025-11-28] Accepted openvswitch 3.6.0-3 (source) into unstable (Thomas Goirand)
[2025-08-25] openvswitch 3.6.0-2 MIGRATED to testing (Debian testing watch)
[2025-08-22] Accepted openvswitch 3.6.0-2 (source) into unstable (Thomas Goirand)
[2025-08-20] Accepted openvswitch 3.6.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2025-02-20] openvswitch 3.5.0-1 MIGRATED to testing (Debian testing watch)
[2025-02-18] Accepted openvswitch 3.5.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-12-21] openvswitch 3.5.0~git20241129.2af7cef-2 MIGRATED to testing (Debian testing watch)
[2024-12-16] Accepted openvswitch 3.5.0~git20241129.2af7cef-2 (source) into unstable (Luca Boccassi)
[2024-12-03] Accepted openvswitch 3.5.0~git20241129.2af7cef-1 (source) into experimental (Frode Nordahl) (signed by: Luca Boccassi)
[2024-08-21] openvswitch 3.4.0-1 MIGRATED to testing (Debian testing watch)
[2024-08-15] Accepted openvswitch 3.4.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-06-16] openvswitch 3.3.1-1 MIGRATED to testing (Debian testing watch)
[2024-06-10] Accepted openvswitch 3.3.1-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-05-25] openvswitch 3.3.0-5 MIGRATED to testing (Debian testing watch)
[2024-05-19] Accepted openvswitch 3.3.0-5 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-05-09] openvswitch 3.3.0-4 MIGRATED to testing (Debian testing watch)
[2024-05-02] Accepted openvswitch 3.3.0-4 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-04-30] Accepted openvswitch 3.3.0-3 (source) into unstable (Thomas Goirand)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 15)
buildd: logs
popcon
browse source code
edit tags
other distros
security tracker
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1
30 bugs