Security update for dpdk
This update for dpdk fixes the following issues:
Security issues fixed:
- CVE-2020-10722: Fixed an integer overflow in vhost_user_set_log_base() (bsc#1171477).
- CVE-2020-10723: Fixed an integer truncation in vhost_user_check_and_alloc_queue_pair() (bsc#1171477).
- CVE-2020-10724: Fixed a missing inputs validation in Vhost-crypto (bsc#1171477).
- CVE-2020-10725: Fixed a segfault caused by invalid virtio descriptors sent from a malicious guest (bsc#1171477).
- CVE-2020-10726: Fixed a denial-of-service caused by VHOST_USER_GET_INFLIGHT_FD message flooding (bsc#1171477).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Jaime Caamaño Ruiz (jaicaa)
Fixed bugs
bnc#1171477
VUL-0: CVE-2020-10722,CVE-2020-10723,CVE-2020-10724,CVE-2020-10725,CVE-2020-10726 :dpdk: multiple vhost related issues
