Search CVE reports


Toggle filters

1 – 10 of 17 results


CVE-2024-11614

Medium priority
Fixed

Denial of service via out-of-bounds read in checksum offload feature

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Fixed Not affected Not affected Not affected
Show less packages

CVE-2022-28199

Medium priority
Fixed

NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to cause denial of service and some...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Fixed Not affected Not affected
Show less packages

CVE-2022-2132

Medium priority

Some fixes available 8 of 9

A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Fixed Fixed Fixed Vulnerable
Show less packages

CVE-2022-0669

Medium priority
Fixed

A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USER_GET_INFLIGHT_FD / VHOST_USER_SET_INFLIGHT_FD messages that are not closed by the...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Fixed Not affected Not affected
Show less packages

CVE-2021-3839

Medium priority
Fixed

A flaw was found in the vhost library in DPDK. Function vhost_user_set_inflight_fd() does not validate `msg->payload.inflight.num_queues`, possibly causing out-of-bounds memory read/write. Any software using DPDK vhost library may...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Fixed Not affected Not affected
Show less packages

CVE-2020-14378

Low priority
Fixed

An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Not affected Not affected
Show less packages

CVE-2020-14377

Medium priority
Fixed

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A complete lack of validation of attacker-controlled parameters can lead to a buffer over read. The results of the over read are then written back to...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Not affected Not affected
Show less packages

CVE-2020-14376

Medium priority
Fixed

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Not affected Not affected
Show less packages

CVE-2020-14375

Medium priority
Fixed

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, and the data they describe are in a region of memory accessible by from both the virtual machine and the host. An attacker in a VM...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Not affected Not affected
Show less packages

CVE-2020-14374

Medium priority
Fixed

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copy_data function leads to a buffer overflow allowing an attacker in a virtual machine to write arbitrary data to...

1 affected package

dpdk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dpdk Fixed Not affected Not affected
Show less packages