openSUSE-SU-2020:1599-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2020:1599-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2020:1599-1
- Related
- Published
- 2020-10-03T22:22:25Z
- Modified
- 2020-10-03T22:22:25Z
- Summary
- Security update for dpdk
- Details
-
This update for dpdk fixes the following issues:
- dpdk was updated to 19.11.4
- CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-14378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in host (VM Escape), reading host application memory space to guest and causing partially denial of service in the host(bsc#1176590).
- For a list of fixes check: https://doc.dpdk.org/guides-19.11/relnotes/release19_11.html#id8 denial of service in the host (bsc#1176590).
This update was imported from the SUSE:SLE-15-SP2:Update update project.
- dpdk was updated to 19.11.4
- References
-
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YBSGY453NNB4LDJYA3J7SNEOJKG5HCAD/
- https://bugzilla.suse.com/1176590
- https://www.suse.com/security/cve/CVE-2020-14374
- https://www.suse.com/security/cve/CVE-2020-14375
- https://www.suse.com/security/cve/CVE-2020-14376
- https://www.suse.com/security/cve/CVE-2020-14377
- https://www.suse.com/security/cve/CVE-2020-14378
Affected packages
openSUSE:Leap 15.2 / dpdk
Package
- Name
- dpdk
- Purl
- purl:rpm/suse/dpdk&distro=openSUSE%20Leap%2015.2
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed19.11.4-lp152.2.8.1
Ecosystem specific
{
"binaries": [
{
"dpdk-tools": "19.11.4-lp152.2.8.1",
"libdpdk-20_0": "19.11.4-lp152.2.8.1",
"dpdk-devel": "19.11.4-lp152.2.8.1",
"dpdk-doc": "19.11.4-lp152.2.8.1",
"dpdk-kmp-preempt": "19.11.4_k5.3.18_lp152.41-lp152.2.8.1",
"dpdk": "19.11.4-lp152.2.8.1",
"dpdk-kmp-default": "19.11.4_k5.3.18_lp152.41-lp152.2.8.1",
"dpdk-examples": "19.11.4-lp152.2.8.1"
}
]
}