A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USER_GET_INFLIGHT_FD / VHOST_USER_SET_INFLIGHT_FD messages that are not closed by the vhost-user slave. By sending such messages continuously, the vhost-user master exhausts available fd in the vhost-user slave process, leading to a denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dpdk data plane development kit 22.03 |
||
dpdk data plane development kit 19.11 |
||
dpdk data plane development kit |
||
openvswitch openvswitch 2.15.0 |
||
openvswitch openvswitch 2.13.0 |
||
redhat openshift container platform 4.0 |