SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP2-2020-2770

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP2-2020-2770

Security update for dpdk

Type: security

Severity: critical

Issued: 2020-09-28

Description:

This update for dpdk fixes the following issues:

- dpdk was updated to 19.11.4
  - CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-14378: Fixed multiple issues where a malicious guest could 
    harm the host using vhost crypto, including executing code in host (VM Escape), reading host application memory space to guest 
    and causing partially denial of service in the host(bsc#1176590).
- For a list of fixes check:
  https://doc.dpdk.org/guides-19.11/rel_notes/release_19_11.html#id8
  denial of service in the host (bsc#1176590).

References

CVE: CVE-2020-14378
CVE: CVE-2020-14377
CVE: CVE-2020-14376
CVE: CVE-2020-14375
CVE: CVE-2020-14374
Bugzilla: 1176590 VUL-0: EMBARGOED: CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-14378: dpdk: VM escape

Packages

dpdk-19.11.4-3.9.1