dpdk is vulnerable to remote code execution. An attacker to is able to execute arbitrary code on the host OS remotely due to a VM escape vulnerability in vhost_crypto
.
lists.opensuse.org/opensuse-security-announce/2020-10/msg00004.html
lists.opensuse.org/opensuse-security-announce/2020-10/msg00006.html
www.openwall.com/lists/oss-security/2021/01/04/1
www.openwall.com/lists/oss-security/2021/01/04/2
www.openwall.com/lists/oss-security/2021/01/04/5
bugzilla.redhat.com/show_bug.cgi?id=1879466
people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-14374.html?_ga=2.254474760.1417227636.1601352135-1067420205.1601352135
ubuntu.com/security/notices/USN-4550-1
www.openwall.com/lists/oss-security/2020/09/28/3