Описание
A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.
Отчет
In OpenShift Container Platform (OCP) the openvswitch rpm package is consumed from the RHEL Fast Datapath repositories, hence OCP openvswitch components are marked as "Will not fix".
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Fast Datapath for RHEL 7 | openvswitch | Not affected | ||
| Fast Datapath for RHEL 7 | openvswitch2.10 | Not affected | ||
| Fast Datapath for RHEL 7 | openvswitch2.12 | Affected | ||
| Fast Datapath for RHEL 8 | openvswitch2.12 | Affected | ||
| Red Hat Ceph Storage 3 | ceph | Not affected | ||
| Red Hat Ceph Storage 4 | ceph | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openvswitch2.13 | Will not fix | ||
| Red Hat OpenShift Container Platform 4 | openvswitch2.15 | Will not fix | ||
| Red Hat OpenShift Container Platform 4 | openvswitch2.16 | Will not fix | ||
| Red Hat OpenStack Platform 13 (Queens) | rhosp-openvswitch | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
8.6 High
CVSS3
Связанные уязвимости
A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.
A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.
A permissive list of allowed inputs flaw was found in DPDK. This issue ...
EPSS
8.6 High
CVSS3