rpm package
suse/dpdk&distro=SUSE Linux Enterprise Module for Server Applications 15 SP2
pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP2
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-14374 | — | < 19.11.4-3.9.1 | 19.11.4-3.9.1 | Sep 30, 2020 | A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copy_data function leads to a buffer overflow allowing an attacker in a virtual machine to write arbitrary data to any address in the vhost_crypto application. The highest thr | ||
| CVE-2020-14377 | — | < 19.11.4-3.9.1 | 19.11.4-3.9.1 | Sep 30, 2020 | A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A complete lack of validation of attacker-controlled parameters can lead to a buffer over read. The results of the over read are then written back to the guest virtual machine memory. This vulnerability can | ||
| CVE-2020-14376 | — | < 19.11.4-3.9.1 | 19.11.4-3.9.1 | Sep 30, 2020 | A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integri | ||
| CVE-2020-14375 | — | < 19.11.4-3.9.1 | 19.11.4-3.9.1 | Sep 30, 2020 | A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, and the data they describe are in a region of memory accessible by from both the virtual machine and the host. An attacker in a VM can change the contents of the memory after vhost_c | ||
| CVE-2020-14378 | — | < 19.11.4-3.9.1 | 19.11.4-3.9.1 | Sep 30, 2020 | An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck in a 4,294,967,295-count iteration loop. Depending |
- CVE-2020-14374Sep 30, 2020affected < 19.11.4-3.9.1fixed 19.11.4-3.9.1
A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copy_data function leads to a buffer overflow allowing an attacker in a virtual machine to write arbitrary data to any address in the vhost_crypto application. The highest thr
- CVE-2020-14377Sep 30, 2020affected < 19.11.4-3.9.1fixed 19.11.4-3.9.1
A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A complete lack of validation of attacker-controlled parameters can lead to a buffer over read. The results of the over read are then written back to the guest virtual machine memory. This vulnerability can
- CVE-2020-14376Sep 30, 2020affected < 19.11.4-3.9.1fixed 19.11.4-3.9.1
A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integri
- CVE-2020-14375Sep 30, 2020affected < 19.11.4-3.9.1fixed 19.11.4-3.9.1
A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, and the data they describe are in a region of memory accessible by from both the virtual machine and the host. An attacker in a VM can change the contents of the memory after vhost_c
- CVE-2020-14378Sep 30, 2020affected < 19.11.4-3.9.1fixed 19.11.4-3.9.1
An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck in a 4,294,967,295-count iteration loop. Depending