Cumulus Networks Security Advisory Cumulus Linux 2.5.4

  • 16 November 2015
  • 0 replies

Userlevel 5
Cumulus Networks®️ Security Advisory

Description: In some configurations, flooded traffic from the primary VLAN ID of a bridge can be transmitted out of ports that are not assigned as a member of that VLAN. This can result in the associated broadcast, multicast and unknown destination traffic for the primary VLAN to be transmitted out from ports that should not receive the traffic.

Workaround: Executing "sudo ifdown [bridge]" followed by "sudo ifup [bridge]" of the bridge prevents the issue.

The Cumulus Linux repository was updated with the latest security resolution to this issue.

This issue has a CVSS score of 3.4 (Low). We recommend that you upgrade Cumulus Linux and Cumulus RMP.

For instructions on how to apply the latest security upgrades, please refer to this Help Center article:

We would like to thank Collin Crowell for reporting this issue.

If you have any questions, please contact us via:

The Cumulus Networks Team
cumulus-security-announce mailing list

This topic has been closed for comments