Security update for dpdk SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2020:0693-1 Final 1 1 2020-05-22T16:18:48Z current 2020-05-22T16:18:48Z 2020-05-22T16:18:48Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for dpdk This update for dpdk fixes the following issues: Security issues fixed: - CVE-2020-10722: Fixed an integer overflow in vhost_user_set_log_base() (bsc#1171477). - CVE-2020-10723: Fixed an integer truncation in vhost_user_check_and_alloc_queue_pair() (bsc#1171477). - CVE-2020-10724: Fixed a missing inputs validation in Vhost-crypto (bsc#1171477). - CVE-2020-10725: Fixed a segfault caused by invalid virtio descriptors sent from a malicious guest (bsc#1171477). - CVE-2020-10726: Fixed a denial-of-service caused by VHOST_USER_GET_INFLIGHT_FD message flooding (bsc#1171477). This update was imported from the SUSE:SLE-15-SP1:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2020-693 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/662KDS7SYOF2U5AQLCDPYJDYUEUXXQWC/ E-Mail link for openSUSE-SU-2020:0693-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1171477 SUSE Bug 1171477 https://www.suse.com/security/cve/CVE-2020-10722/ SUSE CVE CVE-2020-10722 page https://www.suse.com/security/cve/CVE-2020-10723/ SUSE CVE CVE-2020-10723 page https://www.suse.com/security/cve/CVE-2020-10724/ SUSE CVE CVE-2020-10724 page https://www.suse.com/security/cve/CVE-2020-10725/ SUSE CVE CVE-2020-10725 page https://www.suse.com/security/cve/CVE-2020-10726/ SUSE CVE CVE-2020-10726 page openSUSE Leap 15.1 dpdk-18.11.3-lp151.3.4.1 dpdk-devel-18.11.3-lp151.3.4.1 dpdk-doc-18.11.3-lp151.3.4.1 dpdk-examples-18.11.3-lp151.3.4.1 dpdk-kmp-default-18.11.3_k4.12.14_lp151.28.48-lp151.3.4.1 dpdk-tools-18.11.3-lp151.3.4.1 libdpdk-18_11-18.11.3-lp151.3.4.1 dpdk-18.11.3-lp151.3.4.1 as a component of openSUSE Leap 15.1 dpdk-devel-18.11.3-lp151.3.4.1 as a component of openSUSE Leap 15.1 dpdk-doc-18.11.3-lp151.3.4.1 as a component of openSUSE Leap 15.1 dpdk-examples-18.11.3-lp151.3.4.1 as a component of openSUSE Leap 15.1 dpdk-kmp-default-18.11.3_k4.12.14_lp151.28.48-lp151.3.4.1 as a component of openSUSE Leap 15.1 dpdk-tools-18.11.3-lp151.3.4.1 as a component of openSUSE Leap 15.1 libdpdk-18_11-18.11.3-lp151.3.4.1 as a component of openSUSE Leap 15.1 A vulnerability was found in DPDK versions 18.05 and above. A missing check for an integer overflow in vhost_user_set_log_base() could result in a smaller memory map than requested, possibly allowing memory corruption. CVE-2020-10722 openSUSE Leap 15.1:dpdk-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-devel-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-doc-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-examples-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-kmp-default-18.11.3_k4.12.14_lp151.28.48-lp151.3.4.1 openSUSE Leap 15.1:dpdk-tools-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:libdpdk-18_11-18.11.3-lp151.3.4.1 moderate 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/662KDS7SYOF2U5AQLCDPYJDYUEUXXQWC/ https://www.suse.com/security/cve/CVE-2020-10722.html CVE-2020-10722 https://bugzilla.suse.com/1171477 SUSE Bug 1171477 https://bugzilla.suse.com/1171930 SUSE Bug 1171930 A memory corruption issue was found in DPDK versions 17.05 and above. This flaw is caused by an integer truncation on the index of a payload. Under certain circumstances, the index (a UInt) is copied and truncated into a uint16, which can lead to out of bound indexing and possible memory corruption. CVE-2020-10723 openSUSE Leap 15.1:dpdk-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-devel-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-doc-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-examples-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-kmp-default-18.11.3_k4.12.14_lp151.28.48-lp151.3.4.1 openSUSE Leap 15.1:dpdk-tools-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:libdpdk-18_11-18.11.3-lp151.3.4.1 low 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/662KDS7SYOF2U5AQLCDPYJDYUEUXXQWC/ https://www.suse.com/security/cve/CVE-2020-10723.html CVE-2020-10723 https://bugzilla.suse.com/1171477 SUSE Bug 1171477 https://bugzilla.suse.com/1171925 SUSE Bug 1171925 A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-bounds memory read. CVE-2020-10724 openSUSE Leap 15.1:dpdk-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-devel-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-doc-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-examples-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-kmp-default-18.11.3_k4.12.14_lp151.28.48-lp151.3.4.1 openSUSE Leap 15.1:dpdk-tools-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:libdpdk-18_11-18.11.3-lp151.3.4.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/662KDS7SYOF2U5AQLCDPYJDYUEUXXQWC/ https://www.suse.com/security/cve/CVE-2020-10724.html CVE-2020-10724 https://bugzilla.suse.com/1171477 SUSE Bug 1171477 https://bugzilla.suse.com/1171926 SUSE Bug 1171926 A flaw was found in DPDK version 19.11 and above that allows a malicious guest to cause a segmentation fault of the vhost-user backend application running on the host, which could result in a loss of connectivity for the other guests running on that host. This is caused by a missing validity check of the descriptor address in the function `virtio_dev_rx_batch_packed()`. CVE-2020-10725 openSUSE Leap 15.1:dpdk-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-devel-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-doc-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-examples-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-kmp-default-18.11.3_k4.12.14_lp151.28.48-lp151.3.4.1 openSUSE Leap 15.1:dpdk-tools-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:libdpdk-18_11-18.11.3-lp151.3.4.1 important 4 AV:N/AC:L/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/662KDS7SYOF2U5AQLCDPYJDYUEUXXQWC/ https://www.suse.com/security/cve/CVE-2020-10725.html CVE-2020-10725 https://bugzilla.suse.com/1171477 SUSE Bug 1171477 https://bugzilla.suse.com/1171927 SUSE Bug 1171927 A vulnerability was found in DPDK versions 19.11 and above. A malicious container that has direct access to the vhost-user socket can keep sending VHOST_USER_GET_INFLIGHT_FD messages, causing a resource leak (file descriptors and virtual memory), which may result in a denial of service. CVE-2020-10726 openSUSE Leap 15.1:dpdk-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-devel-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-doc-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-examples-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:dpdk-kmp-default-18.11.3_k4.12.14_lp151.28.48-lp151.3.4.1 openSUSE Leap 15.1:dpdk-tools-18.11.3-lp151.3.4.1 openSUSE Leap 15.1:libdpdk-18_11-18.11.3-lp151.3.4.1 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/662KDS7SYOF2U5AQLCDPYJDYUEUXXQWC/ https://www.suse.com/security/cve/CVE-2020-10726.html CVE-2020-10726 https://bugzilla.suse.com/1171477 SUSE Bug 1171477 https://bugzilla.suse.com/1171929 SUSE Bug 1171929