MIRRORS/meta-dpdk
1
0
Fork 0
mirror of git://git.yoctoproject.org/meta-dpdk.git synced 2025-07-05 05:04:45 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
scarthgap
meta-dpdk/recipes-extended/dpdk
History
Divya Chellam 2b03da4eba
dpdk: fix CVE-2024-11614 
An out-of-bounds read vulnerability was found in DPDK's Vhost
library checksum offload feature. This issue enables an
untrusted or compromised guest to crash the hypervisor's vSwitch
by forging Virtio descriptors to cause out-of-bounds reads. This
flaw allows an attacker with a malicious VM using a virtio driver
to cause the vhost-user side to crash by sending a packet with a
Tx checksum offload request and an invalid csum_start offset.

Reference:
https://security-tracker.debian.org/tracker/CVE-2024-11614

Upstream-patch:
https://git.dpdk.org/dpdk/commit/?id=4dc4e33ffa108e945fc8a1e2bbc7819791faa61e

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
2025-02-13 23:27:58 +08:00
..
dpdk dpdk: fix CVE-2024-11614 2025-02-13 23:27:58 +08:00
dpdk_22.11.7.bb dpdk: upgrade 22.11.7 -> 22.11.7 2024-12-09 17:44:59 +08:00
dpdk_23.11.1.bb dpdk: fix CVE-2024-11614 2025-02-13 23:27:58 +08:00
dpdk-kmods_git.bb dpdk-kmods: upgrade to commit hash e721c733cd24206399bebb8f0751b0387c4c1595 2023-05-10 16:04:59 +08:00
dpdk-module_22.11.7.bb dpdk: upgrade 22.11.7 -> 22.11.7 2024-12-09 17:44:59 +08:00
dpdk.inc dpdk.inc: switch to using https protocol 2023-10-03 15:32:47 +08:00