USN-5401-1: DPDK vulnerabilities
4 May 2022
Several security issues were fixed in DPDK.
- dpdk - set of libraries for fast packet processing
Wenxiang Qian discovered that DPDK incorrectly checked certain payloads. An
attacker could use this issue to cause DPDK to crash, resulting in a denial
of service, or possibly execute arbitrary code. (CVE-2021-3839)
It was discovered that DPDK incorrectly handled inflight type messages. An
attacker could possibly use this issue to cause DPDK to consume resources,
leading to a denial of service. (CVE-2022-0669)
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.