A flaw was found in all dpdk version 17.x.x prior to 17.11.8, 16.x.x prior to 16.11.10, 18.x.x prior to 18.11.4 and 19.x.x prior to 19.08.1 where a malicious master, or a container with access to vhost_user socket, can send specially crafted VRING_SET_NUM messages, resulting in a memory leak including file descriptors. This flaw could lead to a denial of service condition.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dpdk data plane development kit |
||
redhat enterprise linux fast datapath 7.0 |
||
redhat openstack 10 |
||
redhat enterprise linux fast datapath 8.0 |
||
redhat virtualization eus 4.2 |
||
fedoraproject fedora 31 |