You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa DPDK

Sigurnosni nedostatak programskog paketa DPDK

by Marina Dimic Vugec - 0

==========================================================================
Ubuntu Security Notice USN-4189-2
November 25, 2019

dpdk regression
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 19.10
– Ubuntu 19.04
– Ubuntu 18.04 LTS

Summary:

USN-4189-1 introduced a regression in DPDK.

Software Description:
– dpdk: set of libraries for fast packet processing

Details:

USN-4189-1 fixed a vulnerability in DPDK. The new version introduced a
regression in certain environments. This update fixes the problem.

Original advisory details:

Jason Wang discovered that DPDK incorrectly handled certain messages. An
attacker in a malicious container could possibly use this issue to cause
DPDK to leak resources, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.10:
dpdk 18.11.5-0ubuntu0.19.10.1

Ubuntu 19.04:
dpdk 18.11.5-0ubuntu0.19.04.1

Ubuntu 18.04 LTS:
dpdk 17.11.9-0ubuntu18.04.1

This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes.

References:
https://usn.ubuntu.com/4189-2
https://usn.ubuntu.com/4189-1
https://launchpad.net/bugs/1853463

Package Information:
https://launchpad.net/ubuntu/+source/dpdk/18.11.5-0ubuntu0.19.10.1
https://launchpad.net/ubuntu/+source/dpdk/18.11.5-0ubuntu0.19.04.1
https://launchpad.net/ubuntu/+source/dpdk/17.11.9-0ubuntu18.04.1

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCgAdFiEEUMSg3c8x5FLOsZtRZWnYVadEvpMFAl3b06wACgkQZWnYVadE
vpMNPA//VxP2TCurLyMov+jeOC5TFFVXQkaC+Kx8WxTQ2L00UDluGiRrgk342ugI
0cOuzY/XmpPnX2vHgq8mnVYQwj/VxHikZyNcz0VcbERJX5pM6ERTI2JR9G4q3+Fk
RdMRuMjIXKW4boxSdNgL2ki+Lx/Q9RgqG5V+IDMTz/589fmDtWs9pXQlqU5wLViR
bWJru99P24QmxYYD9NKbmbK6dC2/ALlR9jDTvCU3TuMA5EOQmozMhjtXFf5m66K8
HKo4iLgA/MTeNsEf75DKVTZEIr/b6VEAn5EmvxsRPxddVJv8rysfWKuptegPRSRm
1PfzwUxcRD/60PMgYMGkxCPSpket6LQN7TANVh25LZz671jLSepOC7zLRjaNkthd
BdH20vseamU09bv7FrXN9ph64hwKls5Uwn82J4Ec/9gnA/KRb+Kfj7OfIAybCoSk
ldq4zRNMgGmtEvkBS+fOaTRUBForeK44LH99fT0ljtomVPOqlT38f+Fmnce1QucI
8NY2t5kmAPDjE3OEJxTJlFrViFTdoV4psnSZhZyl0s69AsOornfzVarCqKxEJJbf
99FrTBuKJK5jY0qdXovIsoZWgmUfDHNicHKBwN3c70GJ+uZk1TKm/xaotvA4nuya
XIelvqZlRsre3YUXGs1Q6jnh3byxGZ7bMGWoIc6deVaR8vBADx8=
=T+WY
—–END PGP SIGNATURE—–

Marina Dimic Vugec
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa chromium-browser

Otkriveni su sigurnosni nedostaci u programskom paketu chromium-browser za operacijski sustav RHEL. Otkriveni nedostaci potencijalnim udaljenim napadačima omogućuju izvršavanje proizvoljnog...

Close