23 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-3839
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the vhost library in DPDK. Function vhostusersetinflightfd does not validate msg-payload.inflight.numqueues, possibly causing out-of-bounds...
CentOS 9 : dpdk-21.11.1-1.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the dpdk-21.11.1-1.el9 build changelog. - A flaw was found in the vhost library in DPDK. Function vhostusersetinflightfd does not validate msg-payload.inflight.numqueues, possibly causing...
Rocky Linux 9 : dpdk (RLSA-2022:8263)
The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:8263 advisory. - A flaw was found in the vhost library in DPDK. Function vhostusersetinflightfd does not validate msg-payload.inflight.numqueues, possibly causing...
AlmaLinux 9 : dpdk (ALSA-2022:8263)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:8263 advisory. - A flaw was found in the vhost library in DPDK. Function vhostusersetinflightfd does not validate msg-payload.inflight.numqueues, possibly causing...
RLSA-2022:8263 Important: dpdk security and bug fix update
The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Security Fixes: dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs CVE-2022-2132 DPDK: out-of-bounds read/write in...
ALSA-2022:8263 Important: dpdk security and bug fix update
The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Security Fixes: dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs CVE-2022-2132 DPDK: out-of-bounds read/write in...
EulerOS 2.0 SP9 : dpdk (EulerOS-SA-2022-2313)
According to the versions of the dpdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the vhost library in DPDK. Function vhostusersetinflightfd does not validate msg-payload.inflight.numqueues, possibly causing...
Huawei EulerOS: Security Advisory for dpdk (EulerOS-SA-2022-2313)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-3839
CVE-2021-3839 affects the DPDK vhost library: vhost_user_set_inflight_fd() does not validate msg->payload.inflight.num_queues, which can cause out-of-bounds memory read/write and may crash software using the DPDK vhost library. The connected Nessus/issuer entries (e.g., MiracleLinux, TencentOS...
Huawei EulerOS: Security Advisory for dpdk (EulerOS-SA-2022-2254)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : dpdk (EulerOS-SA-2022-2254)
According to the versions of the dpdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - DPDK: out-of-bounds read/write in vhostusersetinflightfd may lead to crash CVE-2021-3839 - dpdk: sending vhost-user-inflight type messages could...
EulerOS 2.0 SP10 : dpdk (EulerOS-SA-2022-2241)
According to the versions of the dpdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - DPDK: out-of-bounds read/write in vhostusersetinflightfd may lead to crash CVE-2021-3839 - dpdk: sending vhost-user-inflight type messages could...
SUSE SLES15 Security Update : dpdk (SUSE-SU-2022:2273-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2273-1 advisory. - A flaw was found in the vhost library in DPDK. Function vhostusersetinflightfd does not validate msg-payload.inflight.numqueues,...
OESA-2022-1713 dpdk security update
DPDK core includes kernel modules, core libraries and tools. testpmd application allows to test fast packet processing environments on arm64 platforms. For instance, it can be used to check that environment can support fast path applications such as 6WINDGate, pktgen, rumptcpip, etc. More librari...
SUSE SLES15 Security Update : dpdk (SUSE-SU-2022:1892-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1892-1 advisory. - A flaw was found in the vhost library in DPDK. Function vhostusersetinflightfd does not validate msg-payload.inflight.numqueues,...
SUSE: Security Advisory (SUSE-SU-2022:1892-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for dpdk (SUSE-SU-2022:1892-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Moderate: Red Hat Security Advisory: openvswitch2.16 security update
An update for openvswitch2.16 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Moderate: Red Hat Security Advisory: openvswitch2.15 security update
An update for openvswitch2.15 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
RHEL 8 : openvswitch2.16 (RHSA-2022:4788)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:4788 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...