Описание
Security update for dpdk
This update for dpdk fixes the following issues:
-
CVE-2021-3839: Fixed a memory corruption issue during vhost-user communication (bsc#1198963).
-
CVE-2022-0669: Fixed a denial of service that could be triggered by a vhost-user master (bsc#1198964).
-
rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581)
Список пакетов
SUSE Enterprise Storage 7
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
SUSE Linux Enterprise Server 15 SP2-BCL
SUSE Linux Enterprise Server 15 SP2-LTSS
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Manager Proxy 4.1
SUSE Manager Retail Branch Server 4.1
SUSE Manager Server 4.1
Ссылки
- Link for SUSE-SU-2022:2273-1
- E-Mail link for SUSE-SU-2022:2273-1
- SUSE Security Ratings
- SUSE Bug 1198581
- SUSE Bug 1198963
- SUSE Bug 1198964
- SUSE CVE CVE-2021-3839 page
- SUSE CVE CVE-2022-0669 page
Описание
A flaw was found in the vhost library in DPDK. Function vhost_user_set_inflight_fd() does not validate `msg->payload.inflight.num_queues`, possibly causing out-of-bounds memory read/write. Any software using DPDK vhost library may crash as a result of this vulnerability.
Затронутые продукты
Ссылки
- CVE-2021-3839
- SUSE Bug 1198963
Описание
A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USER_GET_INFLIGHT_FD / VHOST_USER_SET_INFLIGHT_FD messages that are not closed by the vhost-user slave. By sending such messages continuously, the vhost-user master exhausts available fd in the vhost-user slave process, leading to a denial of service.
Затронутые продукты
Ссылки
- CVE-2022-0669
- SUSE Bug 1198964