An Important security update for OVN 23.09 addresses two vulnerabilities: a heap over-read during ICMP error response generation (CVE-2026-5265, CVSS 6.5 MEDIUM) and an information disclosure via crafted DHCPv6 packets (CVE-2026-5367, CVSS 8.6 HIGH). The update is available for Red Hat Enterprise Linux Fast Datapath 9 across multiple architectures, with the fixed packages identified as version `23.09.6-16.el9fdp`.
Red Hat Product Errata RHSA-2026:11698 - Security Advisory Issued: 2026-04-29 Updated: 2026-04-29 RHSA-2026:11698 - Security Advisory Overview Updated Packages Synopsis Important: ovn23.09 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for ovn23.09 is now available for Fast Datapath for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add native support for virtual network abstractions, such as virtual L2 and L3 overlays and security groups. Security Fix(es): ovn: ovn: Heap Over-Read in ICMP Error Response Generation - security issue (CVE-2026-5265) ovn: OVN: Information disclosure via crafted DHCPv6 packets (CVE-2026-5367) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Fast Datapath 9 x86_64 Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 9 ppc64le Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 9 s390x Red Hat Enterprise Linux Fast Datapath (for RHEL for ARM 64) 9 aarch64 Fixes BZ - 2453458 - CVE-2026-5265 ovn: ovn: Heap Over-Read in ICMP Error Response Generation - security issue BZ - 2455863 - CVE-2026-5367 ovn: OVN: Information disclosure via crafted DHCPv6 packets FDP-3739 - OVN 23.09 FDP-OVN-26.n4 RHEL 9 Release CVEs CVE-2026-5265 CVE-2026-5367 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Fast Datapath 9 SRPM ovn23.09-23.09.6-16.el9fdp.src.rpm SHA-256: fbeec9b850f1ec678675f585da66563b3db33239f4461953ec4c4bd1c666fa79 x86_64 ovn23.09-23.09.6-16.el9fdp.x86_64.rpm SHA-256: f5cf3da9f29e5c0eba94d1f4684637d119dd45038014d9b0bb2a9d688710a908 ovn23.09-central-23.09.6-16.el9fdp.x86_64.rpm SHA-256: 049f25705e7e13d09c0547ac540482745ac8cbaa62fe6669dda2fb229a425cf2 ovn23.09-central-debuginfo-23.09.6-16.el9fdp.x86_64.rpm SHA-256: 4e3e288e76c9349e02628fd2ecf005d27a1d08e8ce73ee90cb92898780bbbd10 ovn23.09-debuginfo-23.09.6-16.el9fdp.x86_64.rpm SHA-256: 00ca26c15a101e8651c4c71b704e60dac1fa728befefba64a00cf85558d6ae3d ovn23.09-debugsource-23.09.6-16.el9fdp.x86_64.rpm SHA-256: 245edae63d9bdd83a21a1afc4df4b919a26ce126c25c690b55c648747f22b6d7 ovn23.09-host-23.09.6-16.el9fdp.x86_64.rpm SHA-256: f0d3ac7188e4e583309551131504756a18ef7071f69a354e2d2e6acf2773b216 ovn23.09-host-debuginfo-23.09.6-16.el9fdp.x86_64.rpm SHA-256: 0fec8f88e25cf62505ccf11de2f400a185816266bd1ce596f990b1ded499d9ce ovn23.09-vtep-23.09.6-16.el9fdp.x86_64.rpm SHA-256: d2d70de1528679eae23e0f237345c1c8afe76a92694f04eb60654482b6ac4d45 ovn23.09-vtep-debuginfo-23.09.6-16.el9fdp.x86_64.rpm SHA-256: 5b3a0e3d678876ef28386a4e12fa37e7b16bc65a35d1b9795830452dea56a3fe Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 9 SRPM ovn23.09-23.09.6-16.el9fdp.src.rpm SHA-256: fbeec9b850f1ec678675f585da66563b3db33239f4461953ec4c4bd1c666fa79 ppc64le ovn23.09-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: c2a6d9c2704e8a08858689c57a90bc5ef71b3eaf6c880725e7f3da33fd84552b ovn23.09-central-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: 25ec23cd6b8dcb53d0331883e98d8029de93ec6085aed20b0114c4a45dba3661 ovn23.09-central-debuginfo-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: d83cb396a4b83e58057c08ad1da568754898862f8d7e6ddf87a156fae0ad91e7 ovn23.09-debuginfo-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: 07949a829628d3683e07408720f7663b27b4ae9e2b1f25129ccdb9d9ec413ef1 ovn23.09-debugsource-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: a92865066a9ab9746adb332e09bdd5d577adde3b353e15562543f8d9cca6c66b ovn23.09-host-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: 92eb660c51c1b94fa88332be2eeff0023efea47d96ef7e8e97aace0ab06152ed ovn23.09-host-debuginfo-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: 3ee7e940d3db173440d669f37d2e0844ca219d37d1fc0e747da8b1f11468e0f7 ovn23.09-vtep-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: 1f41f74f87c0ac3d5d77a63891ae952b2b9d197258edff25913869289b357f61 ovn23.09-vtep-debuginfo-23.09.6-16.el9fdp.ppc64le.rpm SHA-256: be5dcc02acf7faf6111c627231bc8c475fd30005df1dff8226198b1d3a95e1d5 Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 9 SRPM ovn23.09-23.09.6-16.el9fdp.src.rpm SHA-256: fbeec9b850f1ec678675f585da66563b3db33239f4461953ec4c4bd1c666fa79 s390x ovn23.09-23.09.6-16.el9fdp.s390x.rpm SHA-256: 321947f7595d41024de7385b1928c7ad8675d84c78b91767a454e73ad50e370c ovn23.09-central-23.09.6-16.el9fdp.s390x.rpm SHA-256: f7134bae68e2528917ec3e96f6acf14a767398e95a230bcb8c87a0423b4ed8db ovn23.09-central-debuginfo-23.09.6-16.el9fdp.s390x.rpm SHA-256: 4fcf6bea42c1b00b0c64e2f559ee7a342918ed2bb88a660469c5a520472f662f ovn23.09-debuginfo-23.09.6-16.el9fdp.s390x.rpm SHA-256: ce946997adfe76d6d8eb1a5bfb20601e96a269d7bc01a59d7ec5202d44c9f2a7 ovn23.09-debugsource-23.09.6-16.el9fdp.s390x.rpm SHA-256: 2fcb137fb39c50204a4d7f35847f758350eaf76dab431b3da4c42f5821b75072 ovn23.09-host-23.09.6-16.el9fdp.s390x.rpm SHA-256: 316fe51c643a0c589f0f838b5c862b0bb9e71ef57ddb07050224236285c124e5 ovn23.09-host-debuginfo-23.09.6-16.el9fdp.s390x.rpm SHA-256: 7eed42d658bffd702b5ce09a6a1244ea6697aaf2a5ceb21d6d2311b238d7b11a ovn23.09-vtep-23.09.6-16.el9fdp.s390x.rpm SHA-256: 22a46c34b6c977550072be8dc12cdf28c28c0e8a0dd994a522a835b7dc007293 ovn23.09-vtep-debuginfo-23.09.6-16.el9fdp.s390x.rpm SHA-256: 2345a1a50dec8246640b7ffce3f1cc4973114cb2124b0ef3c34586df2bc92a06 Red Hat Enterprise Linux Fast Datapath (for RHEL for ARM 64) 9 SRPM ovn23.09-23.09.6-16.el9fdp.src.rpm SHA-256: fbeec9b850f1ec678675f585da66563b3db33239f4461953ec4c4bd1c666fa79 aarch64 ovn23.09-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 0c778a717d2b53e0e65c779efc8b3d73003110018c1a54980c8a855edb636f51 ovn23.09-central-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 2bfa526c299630abc426c9ed603809fa249875a49808574561502b13bf9470fd ovn23.09-central-debuginfo-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 2042fd555f8979913a2b9240204dd2a9d155e2c0cbe5ae9723f25e6524a829e5 ovn23.09-debuginfo-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 0040501f06031727d06724338002e0283397810ec9f50418dfe2d9559ad1f090 ovn23.09-debugsource-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 05c1db03c403ade42c624fbf710d94187b934e2ac137c29c3c5e1530562d065d ovn23.09-host-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 859afaab2467dd420284787d2d4aba3719f1e296b5eec5b1199865fb66203798 ovn23.09-host-debuginfo-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 4a8416d59938bad878571f7cc1dbf5157ea758d02ac0791f65bd051372b6c7c7 ovn23.09-vtep-23.09.6-16.el9fdp.aarch64.rpm SHA-256: a286623793471a59592aed6ed911603206617146e6384c9b4199e76f45fdbda7 ovn23.09-vtep-debuginfo-23.09.6-16.el9fdp.aarch64.rpm SHA-256: 47d0136d341e233649ddd9f0082035cc572490f018ab91739b8cc6c1dc0108f6 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .