Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
219
security advisorydenial of serviceupdateRocky Linux: RLSA-2025:0222 critical: dpdk denial of service
Important: dpdk security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:0222", "synopsis": "Important: dpdk security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dpdk.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space.\n\nSecurity Fix(es):\n\n* dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library (CVE-2024-11614)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2327955", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2327955", "description": ""}], "cves": [{"name": "CVE-2024-11614", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-11614", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2025-01-11T02:01:36.549945Z", "rpms": {"Rocky Linux 8": {"nvras": ["dpdk-0:23.11-2.el8_10.aarch64.rpm", "dpdk-0:23.11-2.el8_10.src.rpm", "dpdk-0:23.11-2.el8_10.x86_64.rpm", "dpdk-debuginfo-0:23.11-2.el8_10.aarch64.rpm", "dpdk-debuginfo-0:23.11-2.el8_10.x86_64.rpm", "dpdk-debugsource-0:23.11-2.el8_10.aarch64.rpm", "dpdk-debugsource-0:23.11-2.el8_10.x86_64.rpm", "dpdk-devel-0:23.11-2.el8_10.aarch64.rpm", "dpdk-devel-0:23.11-2.el8_10.x86_64.rpm", "dpdk-doc-0:23.11-2.el8_10.noarch.rpm", "dpdk-tools-0:23.11-2.el8_10.aarch64.rpm", "dpdk-tools-0:23.11-2.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Crucial DPDK patch for Rocky Linux addresses denial of service threats posed byharmful hypervisor guests. Take action now.. dpdk update, Rocky Linux security, important updates, denial of service fix. . Severity: Important. LinuxSecurity.com Team
Jan 11, 2025
•Important
Rocky Linux
98
security advisorysecurity updateRed Hat Enterprise LinuxRed Hat Enterprise Linux 8.2 RHSA-2021:1239-01 Important DPDK Segfault Fix
An update for dpdk is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: dpdk security update Advisory ID: RHSA-2021:1239-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:1239 Issue date: 2021-04-19 CVE Names: CVE-2020-10725 ==================================================================== 1. Summary: An update for dpdk is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream EUS (v. 8.2) - aarch64, noarch, ppc64le, x86_64 3. Description: The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Security Fix(es): * dpdk: librte_vhost Malicious guest could cause segfault by sending invalid Virtio descriptor (CVE-2020-10725) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1828894 - CVE-2020-10725 dpdk: librte_vhost Malicious guest could cause segfault by sending invalid Virtiodescriptor 6. Package List: Red Hat Enterprise Linux AppStream EUS (v. 8.2): Source: dpdk-19.11-5.el8_2.src.rpm aarch64: dpdk-19.11-5.el8_2.aarch64.rpm dpdk-debuginfo-19.11-5.el8_2.aarch64.rpm dpdk-debugsource-19.11-5.el8_2.aarch64.rpm dpdk-devel-19.11-5.el8_2.aarch64.rpm dpdk-devel-debuginfo-19.11-5.el8_2.aarch64.rpm dpdk-tools-19.11-5.el8_2.aarch64.rpm noarch: dpdk-doc-19.11-5.el8_2.noarch.rpm ppc64le: dpdk-19.11-5.el8_2.ppc64le.rpm dpdk-debuginfo-19.11-5.el8_2.ppc64le.rpm dpdk-debugsource-19.11-5.el8_2.ppc64le.rpm dpdk-devel-19.11-5.el8_2.ppc64le.rpm dpdk-devel-debuginfo-19.11-5.el8_2.ppc64le.rpm dpdk-tools-19.11-5.el8_2.ppc64le.rpm x86_64: dpdk-19.11-5.el8_2.x86_64.rpm dpdk-debuginfo-19.11-5.el8_2.x86_64.rpm dpdk-debugsource-19.11-5.el8_2.x86_64.rpm dpdk-devel-19.11-5.el8_2.x86_64.rpm dpdk-devel-debuginfo-19.11-5.el8_2.x86_64.rpm dpdk-tools-19.11-5.el8_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2020-10725 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYH1fAtzjgjWX9erEAQgdCQ//Tcy0GQPnjycMa/QUNb9Sr65WEF3sKnmU 1YZuHpwDqfTkxau8hcBXPUqOCnzv5OTc8mA4pcbIgHMUYVRLRUfo5Qg4yehfyrDz dmzfPRyUm7Lzz/LJPU92tWzN7A+rcc2/JwBgEQQ+03q+ggrALepI1Vi/UqmwAsDK 2LfHiplnRUOzbXXY5SOPuJbpsOrKdTRpKcR/Iu9gUz8nSFD62+zSl93rVCLyl0Uj vBTUv0s5gyYkwIRY0FWIpz8eWseYimHFRv7g0xdv1Pe+ZzWmi9z7jvb8n6yuQEAt j1xO6youm+pYXcagqGGX4wF7uWwtEJyr2O2HHwWtSgzBqs3su7ulcaWH9iDZ4G5o 2Xx6E+E0HYr8zF3VSQhYPslpfYqSuYhP+e9wiHGVn13xUry1R+M+cW5Cz/fCW2il SAADkIz2xz1hnXiISm88cv3iNOyOtEbWq1nFhyIYZsPqGUZXFweYwwo6VoiOxrnT KuMpyQrUhoCcXLpFf9ALrqCBtOgB4a98TWo9JPqKNgSLJot+UlssVkWFXjdFbkgV D28jeZYsVdIPQ4wnRFICk12hJTcuyz3VCcKiHbQwEBJVRsVYBLbncCtvieSQfX4I Saaf2U20jP5lctIDfwkrJVPdKFi0mkt+p2pJ/Foj2OlV+L6i+OFIyC6cXl07IQSM 8M4guhLm4U8=2WOs -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Apr 19, 2021
•Important
Red Hat
89
security advisorymoderatefedoraFedora 33 Moderate Advisory: DPDK Fast Packet Processing Update
Updated OVS to 2.15 and DPDK to 20.11. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-fba11d37ee 2021-03-04 20:06:38.965117 --------------------------------------------------------------------------------Name : dpdk Product : Fedora 33 Version : 20.11 Release : 1.fc33 URL : https://www.dpdk.org/ Summary : Set of libraries and drivers for fast packet processing Description : The Data Plane Development Kit is a set of libraries and drivers for fast packet processing in the user space. --------------------------------------------------------------------------------Update Information: Updated OVS to 2.15 and DPDK to 20.11 --------------------------------------------------------------------------------ChangeLog: * Thu Jan 21 2021 Timothy Redaelli - 2:20.11-1 - Update to 20.11 --------------------------------------------------------------------------------References: [ 1 ] Bug #1843590 - enable MLX5 poll mode driver https://bugzilla.redhat.com/show_bug.cgi?id=1843590 [ 2 ] Bug #1899303 - CVE-2015-8011 openvswitch: lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1899303 [ 3 ] Bug #1902326 - dpdk-20.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1902326 [ 4 ] Bug #1921440 - CVE-2020-27827 openvswitch: lldp/openvswitch: denial of service via externally triggered memory leak [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1921440 [ 5 ] Bug #1927492 - CVE-2020-35498 openvswitch: limitation in the OVS packet parsing in userspace leads to DoS [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1927492 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-fba11d37ee' at the command line. Formore information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Mar 04, 2021
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!