openSUSE-SU-2020:1593-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2020:1593-1.json

JSON Data

https://api.osv.dev/v1/vulns/openSUSE-SU-2020:1593-1

Related

Published

2020-10-03T04:23:08Z

Modified

2020-10-03T04:23:08Z

Summary

Security update for dpdk

Details

This update for dpdk fixes the following issues:

dpdk was updated to 18.11.9. For a list of fixes check:
- CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-14378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in host (VM Escape), reading host application memory space to guest and causing partially denial of service in the host(bsc#1176590). For a list of fixes check:
  https://doc.dpdk.org/guides-18.11/relnotes/release18_11.html#fixes

This update was imported from the SUSE:SLE-15-SP1:Update update project.

References

Affected packages

openSUSE:Leap 15.1 / dpdk

Package

Name: dpdk
Purl: purl:rpm/suse/dpdk&distro=openSUSE%20Leap%2015.1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

18.11.9-lp151.3.8.1

Ecosystem specific

{
    "binaries": [
        {
            "libdpdk-18_11": "18.11.9-lp151.3.8.1",
            "dpdk-tools": "18.11.9-lp151.3.8.1",
            "dpdk-devel": "18.11.9-lp151.3.8.1",
            "dpdk-doc": "18.11.9-lp151.3.8.1",
            "dpdk": "18.11.9-lp151.3.8.1",
            "dpdk-kmp-default": "18.11.9_k4.12.14_lp151.28.67-lp151.3.8.1",
            "dpdk-examples": "18.11.9-lp151.3.8.1"
        }
    ]
}