USN-4550-1: DPDK vulnerabilities

28 September 2020

Several security issues were fixed in DPDK.

Releases

Packages

  • dpdk - set of libraries for fast packet processing

Details

Ryan Hall discovered that DPDK incorrectly handled vhost crypto. An
attacker inside a guest could use these issues to perform multiple attacks,
including denial of service attacks, obtaining sensitive information from
the host, and possibly executing arbitrary code on the host.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.04

In general, a standard system update will make all the necessary changes.