Required CVE Record Information
Description
A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References 8 Total
- https://www.openwall.com/lists/oss-security/2020/09/28/3
- https://bugzilla.redhat.com/show_bug.cgi?id=1879470
- usn.ubuntu.com: USN-4550-1 vendor-advisory
- lists.opensuse.org: openSUSE-SU-2020:1593 vendor-advisory
- lists.opensuse.org: openSUSE-SU-2020:1599 vendor-advisory
- openwall.com: [oss-security] 20210104 Re: [dpdk-dev] DPDK security advisory for multiple vhost crypto issues mailing-list
- openwall.com: [oss-security] 20210104 Re: DPDK security advisory for multiple vhost crypto issues mailing-list
- openwall.com: [oss-security] 20210104 Re: [dpdk-dev] DPDK security advisory for multiple vhost crypto issues mailing-list
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 8 Total
- https://www.openwall.com/lists/oss-security/2020/09/28/3 x_transferred
- https://bugzilla.redhat.com/show_bug.cgi?id=1879470 x_transferred
- usn.ubuntu.com: USN-4550-1 vendor-advisoryx_transferred
- lists.opensuse.org: openSUSE-SU-2020:1593 vendor-advisoryx_transferred
- lists.opensuse.org: openSUSE-SU-2020:1599 vendor-advisoryx_transferred
- openwall.com: [oss-security] 20210104 Re: [dpdk-dev] DPDK security advisory for multiple vhost crypto issues mailing-listx_transferred
- openwall.com: [oss-security] 20210104 Re: DPDK security advisory for multiple vhost crypto issues mailing-listx_transferred
- openwall.com: [oss-security] 20210104 Re: [dpdk-dev] DPDK security advisory for multiple vhost crypto issues mailing-listx_transferred