Unrated severityNVD Advisory· Published Aug 31, 2022· Updated Aug 3, 2024

CVE-2022-2132

Description

A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.

Affected products

DPDK/DPDKdescription
osv-coords64 versions
pkg:rpm/almalinux/dpdk pkg:rpm/almalinux/dpdk-devel pkg:rpm/almalinux/dpdk-doc pkg:rpm/almalinux/dpdk-tools pkg:rpm/opensuse/dpdk&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/dpdk&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/dpdk&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/dpdk-thunderx&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/dpdk-thunderx&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/dpdk-thunderx&distro=openSUSE%20Leap%2015.5 pkg:rpm/suse/dpdk&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/dpdk&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/dpdk&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP5 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP3 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP4 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4 pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/dpdk&distro=SUSE%20Manager%20Proxy%204.1 pkg:rpm/suse/dpdk&distro=SUSE%20Manager%20Proxy%204.3 pkg:rpm/suse/dpdk&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1 pkg:rpm/suse/dpdk&distro=SUSE%20Manager%20Server%204.1 pkg:rpm/suse/dpdk&distro=SUSE%20Manager%20Server%204.3 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP5 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP3 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP4 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
< 2:21.11.2-1.el9_1+ 63 more
- (no CPE)range: < 2:21.11.2-1.el9_1
- (no CPE)range: < 2:21.11.2-1.el9_1
- (no CPE)range: < 2:21.11.2-1.el9_1
- (no CPE)range: < 2:21.11.2-1.el9_1
- (no CPE)range: < 19.11.4-150300.16.1
- (no CPE)range: < 19.11.10-150400.4.7.1
- (no CPE)range: < 19.11.10-150500.5.3.1
- (no CPE)range: < 19.11.4-150300.16.1
- (no CPE)range: < 19.11.10-150400.4.7.1
- (no CPE)range: < 19.11.10-150500.5.3.1
- (no CPE)range: < 18.11.9-150100.4.19.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150300.21.1
- (no CPE)range: < 18.11.9-150100.4.19.1
- (no CPE)range: < 18.11.9-150100.4.19.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150300.21.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 18.11.9-150000.3.32.2
- (no CPE)range: < 18.11.9-150000.3.32.2
- (no CPE)range: < 19.11.10-150500.5.3.1
- (no CPE)range: < 19.11.4-150300.16.1
- (no CPE)range: < 19.11.10-150400.4.7.1
- (no CPE)range: < 18.11.9-3.24.1
- (no CPE)range: < 18.11.9-150100.4.19.1
- (no CPE)range: < 18.11.9-150100.4.19.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150300.21.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 18.11.9-150000.3.32.2
- (no CPE)range: < 18.11.9-3.24.1
- (no CPE)range: < 18.11.9-150000.3.32.2
- (no CPE)range: < 18.11.9-150100.4.19.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150300.21.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 18.11.9-3.24.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150300.21.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150300.21.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 18.11.9-150000.3.32.2
- (no CPE)range: < 18.11.9-150000.3.32.2
- (no CPE)range: < 19.11.10-150500.5.3.1
- (no CPE)range: < 19.11.4-150300.16.1
- (no CPE)range: < 19.11.10-150400.4.7.1
- (no CPE)range: < 18.11.9-3.24.1
- (no CPE)range: < 19.11.4-150200.3.20.1
- (no CPE)range: < 19.11.4-150300.21.1
- (no CPE)range: < 19.11.10-150400.4.12.1
- (no CPE)range: < 18.11.9-150000.3.32.2
- (no CPE)range: < 18.11.9-3.24.1
- (no CPE)range: < 18.11.9-3.24.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.dpdk.org/show_bug.cgimitrex_refsource_MISC
bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
lists.debian.org/debian-lts-announce/2022/09/msg00000.htmlmitremailing-listx_refsource_MLIST

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000