SUSE-SU-2020:2768-1

Source
https://www.suse.com/support/update/announcement/2020/suse-su-20202768-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:2768-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2020:2768-1
Related
Published
2020-09-28T15:48:53Z
Modified
2020-09-28T15:48:53Z
Summary
Security update for dpdk
Details

This update for dpdk fixes the following issues:

  • dpdk was updated to 18.11.9. For a list of fixes check:
    • CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-14378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in host (VM Escape), reading host application memory space to guest and causing partially denial of service in the host(bsc#1176590). For a list of fixes check:
      https://doc.dpdk.org/guides-18.11/relnotes/release18_11.html#fixes
References

Affected packages

SUSE:Linux Enterprise Software Development Kit 12 SP5 / dpdk

Package

Name
dpdk
Purl
pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
18.11.9-3.15.1

Ecosystem specific

{
    "binaries": [
        {
            "dpdk-thunderx-devel": "18.11.9-3.15.1",
            "dpdk-devel": "18.11.9-3.15.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / dpdk-thunderx

Package

Name
dpdk-thunderx
Purl
pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
18.11.9-3.15.1

Ecosystem specific

{
    "binaries": [
        {
            "dpdk-thunderx-devel": "18.11.9-3.15.1",
            "dpdk-devel": "18.11.9-3.15.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / dpdk

Package

Name
dpdk
Purl
pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
18.11.9-3.15.1

Ecosystem specific

{
    "binaries": [
        {
            "dpdk-thunderx": "18.11.9-3.15.1",
            "dpdk": "18.11.9-3.15.1",
            "dpdk-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-thunderx-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-tools": "18.11.9-3.15.1",
            "libdpdk-18_11": "18.11.9-3.15.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / dpdk-thunderx

Package

Name
dpdk-thunderx
Purl
pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
18.11.9-3.15.1

Ecosystem specific

{
    "binaries": [
        {
            "dpdk-thunderx": "18.11.9-3.15.1",
            "dpdk": "18.11.9-3.15.1",
            "dpdk-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-thunderx-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-tools": "18.11.9-3.15.1",
            "libdpdk-18_11": "18.11.9-3.15.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / dpdk

Package

Name
dpdk
Purl
pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
18.11.9-3.15.1

Ecosystem specific

{
    "binaries": [
        {
            "dpdk-thunderx": "18.11.9-3.15.1",
            "dpdk": "18.11.9-3.15.1",
            "dpdk-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-thunderx-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-tools": "18.11.9-3.15.1",
            "libdpdk-18_11": "18.11.9-3.15.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / dpdk-thunderx

Package

Name
dpdk-thunderx
Purl
pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
18.11.9-3.15.1

Ecosystem specific

{
    "binaries": [
        {
            "dpdk-thunderx": "18.11.9-3.15.1",
            "dpdk": "18.11.9-3.15.1",
            "dpdk-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-thunderx-kmp-default": "18.11.9_k4.12.14_122.37-3.15.1",
            "dpdk-tools": "18.11.9-3.15.1",
            "libdpdk-18_11": "18.11.9-3.15.1"
        }
    ]
}