CVE-2017-14970 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14970): In lib/ofp-util.c in Open vSwitch (OvS) before 2.8.1, there are multiple memory leaks while parsing malformed OpenFlow group mod messages. References: https://mail.openvswitch.org/pipermail/ovs-dev/2017-September/339085.html https://mail.openvswitch.org/pipermail/ovs-dev/2017-September/339086.html @Maintainer(s): Please provide an updated ebuild, thank you.
@ Maintainer(s): Please confirm that this package is vulnerable. Bug 633420 for the package net-misc/openvswitch might also be vulnerable.
don't think this applies, this is just the python library. https://github.com/openvswitch/ovs/tree/v2.8.1/python