exploitDog

SUSE-SU-2022:3430-1

Опубликовано: 27 сент. 2022

Источник: suse-cvrf

Описание

Security update for dpdk

This update for dpdk fixes the following issues:

CVE-2022-2132: Fixed DoS when a vhost header crosses more than two descriptors and exhausts all mbufs (bsc#1202903).

Список пакетов

SUSE Enterprise Storage 6

dpdk-18.11.9-150100.4.19.1

dpdk-devel-18.11.9-150100.4.19.1

dpdk-kmp-default-18.11.9_k4.12.14_150100.197.120-150100.4.19.1

dpdk-tools-18.11.9-150100.4.19.1

libdpdk-18_11-18.11.9-150100.4.19.1

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS

dpdk-18.11.9-150100.4.19.1

dpdk-devel-18.11.9-150100.4.19.1

dpdk-kmp-default-18.11.9_k4.12.14_150100.197.120-150100.4.19.1

dpdk-tools-18.11.9-150100.4.19.1

libdpdk-18_11-18.11.9-150100.4.19.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

dpdk-18.11.9-150100.4.19.1

dpdk-devel-18.11.9-150100.4.19.1

dpdk-kmp-default-18.11.9_k4.12.14_150100.197.120-150100.4.19.1

dpdk-tools-18.11.9-150100.4.19.1

libdpdk-18_11-18.11.9-150100.4.19.1

SUSE Linux Enterprise Server 15 SP1-BCL

dpdk-18.11.9-150100.4.19.1

dpdk-devel-18.11.9-150100.4.19.1

dpdk-kmp-default-18.11.9_k4.12.14_150100.197.120-150100.4.19.1

dpdk-tools-18.11.9-150100.4.19.1

libdpdk-18_11-18.11.9-150100.4.19.1

SUSE Linux Enterprise Server 15 SP1-LTSS

dpdk-18.11.9-150100.4.19.1

dpdk-devel-18.11.9-150100.4.19.1

dpdk-kmp-default-18.11.9_k4.12.14_150100.197.120-150100.4.19.1

dpdk-tools-18.11.9-150100.4.19.1

libdpdk-18_11-18.11.9-150100.4.19.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

dpdk-18.11.9-150100.4.19.1

dpdk-devel-18.11.9-150100.4.19.1

dpdk-kmp-default-18.11.9_k4.12.14_150100.197.120-150100.4.19.1

dpdk-tools-18.11.9-150100.4.19.1

libdpdk-18_11-18.11.9-150100.4.19.1

openSUSE Leap 15.3

libdpdk-18_11-18.11.9-150100.4.19.1

openSUSE Leap 15.4

libdpdk-18_11-18.11.9-150100.4.19.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20223430-1/
Link for SUSE-SU-2022:3430-1
https://lists.suse.com/pipermail/sle-security-updates/2022-September/012404.html
E-Mail link for SUSE-SU-2022:3430-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1202903
SUSE Bug 1202903
https://www.suse.com/security/cve/CVE-2022-2132/
SUSE CVE CVE-2022-2132 page

Описание

A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.

Затронутые продукты

SUSE Enterprise Storage 6:dpdk-18.11.9-150100.4.19.1

SUSE Enterprise Storage 6:dpdk-devel-18.11.9-150100.4.19.1

SUSE Enterprise Storage 6:dpdk-kmp-default-18.11.9_k4.12.14_150100.197.120-150100.4.19.1

SUSE Enterprise Storage 6:dpdk-tools-18.11.9-150100.4.19.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-2132.html
CVE-2022-2132
https://bugzilla.suse.com/1202903
SUSE Bug 1202903

Уязвимость SUSE-SU-2022:3430-1