[ALSA-2022:8263] Important: dpdk security and bug fix update
Type:
security
Severity:
important
Release date:
2022-11-18
Description:
The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Security Fix(es): * dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs (CVE-2022-2132) * DPDK: out-of-bounds read/write in vhost_user_set_inflight_fd() may lead to crash (CVE-2021-3839) * dpdk: error recovery in mlx5 driver not handled properly, allowing for denial of service (CVE-2022-28199) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 dpdk-tools-21.11.2-1.el9_1.aarch64.rpm 042d3fd7b30a5edbc2951f40dd5a8822d21742ab50baadea8b1e4b984cf48d63
aarch64 dpdk-devel-21.11.2-1.el9_1.aarch64.rpm 48fe292cb31d7e88259264a7461329821fc1212f91c04cf0a5fe00614f5a6cc8
aarch64 dpdk-21.11.2-1.el9_1.aarch64.rpm 8d83a5491213cd552b897f5167c3cf078625009630d34e224c573da84ec3d268
noarch dpdk-doc-21.11.2-1.el9_1.noarch.rpm 3768ef5a8828584af12e2b46400a3648163865d74514a1a5f6e16212a23eccea
ppc64le dpdk-devel-21.11.2-1.el9_1.ppc64le.rpm 3a2f0fcdc1b94465421d31b71d4db454901b324fb8b86d91acafc9f64938f95a
ppc64le dpdk-tools-21.11.2-1.el9_1.ppc64le.rpm 7a974270b0598a549eb036e7988cbc5cad2c26942ad52be8536b44b17b8b18bb
ppc64le dpdk-21.11.2-1.el9_1.ppc64le.rpm 975c0528fc93701451e79ddfcee843996a7b6d4ab95165c9414ecae945bde762
x86_64 dpdk-tools-21.11.2-1.el9_1.x86_64.rpm 39f91f1284f08f56d17c1f1e2c7b1d677844a30c5a129a34a4552564c81b7e9a
x86_64 dpdk-21.11.2-1.el9_1.x86_64.rpm 4148a8b8a97836a173e6ca4ffde1f494072a46693a3507f34f850a0717ad4e6c
x86_64 dpdk-devel-21.11.2-1.el9_1.x86_64.rpm 61db799c74e45ac1995264ff76d7c7feb031b10eb15c2a55897c2e0c2a1eb9e5
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.