SUSE-SU-2022:3356-1

Опубликовано: 23 сент. 2022

Источник: suse-cvrf

Описание

Security update for dpdk

This update for dpdk fixes the following issues:

CVE-2022-2132: Fixed DoS when a vhost header crosses more than two descriptors and exhausts all mbufs (bsc#1202903).

Список пакетов

SUSE Linux Enterprise High Performance Computing 15-ESPOS

dpdk-18.11.9-150000.3.32.2

dpdk-devel-18.11.9-150000.3.32.2

dpdk-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

dpdk-thunderx-18.11.9-150000.3.32.2

dpdk-thunderx-devel-18.11.9-150000.3.32.2

dpdk-thunderx-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

dpdk-tools-18.11.9-150000.3.32.2

libdpdk-18_11-18.11.9-150000.3.32.2

SUSE Linux Enterprise High Performance Computing 15-LTSS

dpdk-18.11.9-150000.3.32.2

dpdk-devel-18.11.9-150000.3.32.2

dpdk-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

dpdk-thunderx-18.11.9-150000.3.32.2

dpdk-thunderx-devel-18.11.9-150000.3.32.2

dpdk-thunderx-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

dpdk-tools-18.11.9-150000.3.32.2

libdpdk-18_11-18.11.9-150000.3.32.2

SUSE Linux Enterprise Server 15-LTSS

dpdk-18.11.9-150000.3.32.2

dpdk-devel-18.11.9-150000.3.32.2

dpdk-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

dpdk-thunderx-18.11.9-150000.3.32.2

dpdk-thunderx-devel-18.11.9-150000.3.32.2

dpdk-thunderx-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

dpdk-tools-18.11.9-150000.3.32.2

libdpdk-18_11-18.11.9-150000.3.32.2

SUSE Linux Enterprise Server for SAP Applications 15

dpdk-18.11.9-150000.3.32.2

dpdk-devel-18.11.9-150000.3.32.2

dpdk-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

dpdk-tools-18.11.9-150000.3.32.2

libdpdk-18_11-18.11.9-150000.3.32.2

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20223356-1/
Link for SUSE-SU-2022:3356-1
https://lists.suse.com/pipermail/sle-security-updates/2022-September/012355.html
E-Mail link for SUSE-SU-2022:3356-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1202903
SUSE Bug 1202903
https://www.suse.com/security/cve/CVE-2022-2132/
SUSE CVE CVE-2022-2132 page

Описание

A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.

Затронутые продукты

SUSE Linux Enterprise High Performance Computing 15-ESPOS:dpdk-18.11.9-150000.3.32.2

SUSE Linux Enterprise High Performance Computing 15-ESPOS:dpdk-devel-18.11.9-150000.3.32.2

SUSE Linux Enterprise High Performance Computing 15-ESPOS:dpdk-kmp-default-18.11.9_k4.12.14_150000.150.98-150000.3.32.2

SUSE Linux Enterprise High Performance Computing 15-ESPOS:dpdk-thunderx-18.11.9-150000.3.32.2

Ссылки

https://www.suse.com/security/cve/CVE-2022-2132.html
CVE-2022-2132
https://bugzilla.suse.com/1202903
SUSE Bug 1202903

SUSE-SU-2022:3356-1

Описание

Список пакетов

SUSE Linux Enterprise High Performance Computing 15-ESPOS

SUSE Linux Enterprise High Performance Computing 15-LTSS

SUSE Linux Enterprise Server 15-LTSS

SUSE Linux Enterprise Server for SAP Applications 15

Ссылки

Уязвимость: CVE-2022-2132

Описание

Затронутые продукты

Ссылки