openvswitch - Debian Package Tracker

general

source: openvswitch (main)
version: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d2
maintainer: Debian OpenStack (DMD)
uploaders: Simon Horman [DMD] – Michal Arbet [DMD] – Christian Ehrhardt [DMD] – Luca Boccassi [DMD] – Thomas Goirand [DMD]
arch: all
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.15.0+ds1-2+deb11u5
o-o-sec: 2.15.0+ds1-2+deb11u5
oldstable: 3.1.0-2+deb12u1
old-sec: 3.1.0-2+deb12u1
stable: 3.5.0-1
testing: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1
unstable: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d2

versioned links

2.15.0+ds1-2+deb11u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.1.0-2+deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.5.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.7.0~git20260211.8c6ebf8-1~1.gbp9127d2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

openvswitch-common
openvswitch-doc
openvswitch-ipsec
openvswitch-pki
openvswitch-source
openvswitch-switch
openvswitch-switch-dpdk
openvswitch-test
openvswitch-testcontroller
openvswitch-vtep
python3-openvswitch

action needed

A new upstream version is available: 3.7.0 high

A new upstream version 3.7.0 is available, you should consider packaging it.

Created: 2026-02-17 Last update: 2026-02-24 07:00

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2019-25076: The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

Created: 2022-09-09 Last update: 2026-02-24 00:32

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2019-25076: The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

Created: 2025-08-09 Last update: 2026-02-24 00:32

lintian reports 10 warnings normal

Lintian reports 10 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-08-21 Last update: 2026-02-23 23:30

1 open merge request in Salsa normal

There is 1 open merge request for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2026-02-19 Last update: 2026-02-19 10:02

Multiarch hinter reports 2 issue(s) low

There are issues with the multiarch metadata for this package.

openvswitch-doc could be marked Multi-Arch: foreign
openvswitch-source could be marked Multi-Arch: foreign

Created: 2021-02-21 Last update: 2026-02-24 07:01

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2019-25076: (postponed; to be fixed through a stable update) The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2026-02-24 00:32

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2019-25076: (postponed; to be fixed through a stable update) The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.

You can find information about how to handle this issue in the security team's documentation.

Created: 2023-06-10 Last update: 2026-02-24 00:32

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.3 instead of 4.6.2).

Created: 2024-04-07 Last update: 2026-02-24 02:02

testing migrations

excuses:
- Migration status for openvswitch (3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1 to 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d2): BLOCKED: Maybe temporary, maybe blocked but Britney is missing information (check below)
- Issues preventing migration:
- ∙ ∙ Missing build on riscv64
- ∙ ∙ Autopkgtest deferred on riscv64: missing arch:riscv64 build
- ∙ ∙ Autopkgtest for netplan.io/1.1.2-8: amd64: Pass, arm64: Pass, ppc64el: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for openvswitch/3.7.0~git20260211.8c6ebf8-1~1.gbp9127d2: amd64: Pass, arm64: Pass, ppc64el: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for ovn/25.09.0-3: amd64: No tests, superficial or marked flaky ♻ (reference ♻), arm64: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: Test triggered, s390x: No tests, superficial or marked flaky ♻
- ∙ ∙ Autopkgtest for ovn-bgp-agent/5.0.0-1: amd64: Pass, arm64: Pass, ppc64el: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for ovn-octavia-provider/9.0.0-1: amd64: Pass, arm64: Pass, ppc64el: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for python-os-ken/3.1.1-3: amd64: Pass, arm64: Pass, ppc64el: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for python-ovsdbapp/2.13.0-3: amd64: Pass, arm64: Pass, ppc64el: Test triggered, s390x: Pass
- ∙ ∙ Lintian check waiting for test results on riscv64 - info
- ∙ ∙ Too young, only 0 of 5 days old
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/o/openvswitch.html
- ∙ ∙ Autopkgtest skipped on i386: not installable (which is allowed)
- ∙ ∙ Reproducible on amd64
- ∙ ∙ Reproducibility regression on arm64: openvswitch-common, openvswitch-ipsec, openvswitch-switch, openvswitch-switch-dpdk, openvswitch-testcontroller, openvswitch-vtep, python3-openvswitch
- ∙ ∙ Reproducible on armhf
- ∙ ∙ Reproducible on i386
- ∙ ∙ Reproducible on ppc64el
- Not considered

news

[rss feed]

[2026-02-24] Accepted openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d3 (source) into unstable (Thomas Goirand)
[2026-02-23] Accepted openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d2 (source) into unstable (Thomas Goirand)
[2026-02-20] openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1 MIGRATED to testing (Debian testing watch)
[2026-02-13] Accepted openvswitch 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1 (source) into unstable (Matteo Perin) (signed by: Luca Boccassi)
[2026-02-11] openvswitch 3.6.0-7 MIGRATED to testing (Debian testing watch)
[2026-02-08] Accepted openvswitch 3.6.0-7 (source) into unstable (Thomas Goirand)
[2025-12-09] openvswitch 3.6.0-6 MIGRATED to testing (Debian testing watch)
[2025-12-07] Accepted openvswitch 3.6.0-6 (source) into unstable (Thomas Goirand)
[2025-12-01] openvswitch 3.6.0-5 MIGRATED to testing (Debian testing watch)
[2025-11-28] Accepted openvswitch 3.6.0-5 (source) into unstable (Thomas Goirand)
[2025-11-28] Accepted openvswitch 3.6.0-3 (source) into unstable (Thomas Goirand)
[2025-08-25] openvswitch 3.6.0-2 MIGRATED to testing (Debian testing watch)
[2025-08-22] Accepted openvswitch 3.6.0-2 (source) into unstable (Thomas Goirand)
[2025-08-20] Accepted openvswitch 3.6.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2025-02-20] openvswitch 3.5.0-1 MIGRATED to testing (Debian testing watch)
[2025-02-18] Accepted openvswitch 3.5.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-12-21] openvswitch 3.5.0~git20241129.2af7cef-2 MIGRATED to testing (Debian testing watch)
[2024-12-16] Accepted openvswitch 3.5.0~git20241129.2af7cef-2 (source) into unstable (Luca Boccassi)
[2024-12-03] Accepted openvswitch 3.5.0~git20241129.2af7cef-1 (source) into experimental (Frode Nordahl) (signed by: Luca Boccassi)
[2024-08-21] openvswitch 3.4.0-1 MIGRATED to testing (Debian testing watch)
[2024-08-15] Accepted openvswitch 3.4.0-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-06-16] openvswitch 3.3.1-1 MIGRATED to testing (Debian testing watch)
[2024-06-10] Accepted openvswitch 3.3.1-1 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-05-25] openvswitch 3.3.0-5 MIGRATED to testing (Debian testing watch)
[2024-05-19] Accepted openvswitch 3.3.0-5 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-05-09] openvswitch 3.3.0-4 MIGRATED to testing (Debian testing watch)
[2024-05-02] Accepted openvswitch 3.3.0-4 (source) into unstable (Frode Nordahl) (signed by: Luca Boccassi)
[2024-04-30] Accepted openvswitch 3.3.0-3 (source) into unstable (Thomas Goirand)
[2024-04-29] Accepted openvswitch 3.3.0-2 (source) into unstable (Thomas Goirand)
[2024-03-18] Accepted openvswitch 2.15.0+ds1-2+deb11u5 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Thomas Goirand)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 10)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 3.7.0~git20260211.8c6ebf8-1~1.gbp9127d1
30 bugs