Описание
Security update for dpdk
This update for dpdk fixes the following issues:
Security:
- CVE-2021-3839: Fixed a memory corruption issue during vhost-user communication (bsc#1198963).
- CVE-2022-0669: Fixed a denial of service that could be triggered by a vhost-user master (bsc#1198964).
Bugfixes:
- kni: allow configuring thread granularity (bsc#1195172).
- Fixed reading of PCI device name as UTF strings (bsc#1198873).
Список пакетов
SUSE Linux Enterprise Module for Server Applications 15 SP3
openSUSE Leap 15.3
openSUSE Leap 15.4
Ссылки
- Link for SUSE-SU-2022:1892-1
- E-Mail link for SUSE-SU-2022:1892-1
- SUSE Security Ratings
- SUSE Bug 1195172
- SUSE Bug 1198873
- SUSE Bug 1198963
- SUSE Bug 1198964
- SUSE CVE CVE-2021-3839 page
- SUSE CVE CVE-2022-0669 page
Описание
A flaw was found in the vhost library in DPDK. Function vhost_user_set_inflight_fd() does not validate `msg->payload.inflight.num_queues`, possibly causing out-of-bounds memory read/write. Any software using DPDK vhost library may crash as a result of this vulnerability.
Затронутые продукты
Ссылки
- CVE-2021-3839
- SUSE Bug 1198963
Описание
A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USER_GET_INFLIGHT_FD / VHOST_USER_SET_INFLIGHT_FD messages that are not closed by the vhost-user slave. By sending such messages continuously, the vhost-user master exhausts available fd in the vhost-user slave process, leading to a denial of service.
Затронутые продукты
Ссылки
- CVE-2022-0669
- SUSE Bug 1198964