Enterprise Linux Fast Datapath

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-31	CVE-2022-2132	A permissive list of allowed inputs flaw was found in DPDK. network low complexity dpdk fedoraproject debian redhat	8.6
2022-08-23	CVE-2021-3839	Out-of-bounds Write vulnerability in multiple products A flaw was found in the vhost library in DPDK. network low complexity dpdk fedoraproject redhat CWE-787	7.5
2022-08-23	CVE-2021-3905	Memory Leak vulnerability in multiple products A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. network low complexity openvswitch redhat canonical fedoraproject CWE-401	7.5
2019-11-14	CVE-2019-14818	Memory Leak vulnerability in multiple products A flaw was found in all dpdk version 17.x.x before 17.11.8, 16.x.x before 16.11.10, 18.x.x before 18.11.4 and 19.x.x before 19.08.1 where a malicious master, or a container with access to vhost_user socket, can send specially crafted VRING_SET_NUM messages, resulting in a memory leak including file descriptors. network low complexity dpdk redhat fedoraproject CWE-401	7.5
2018-04-24	CVE-2018-1059	Information Exposure vulnerability in multiple products The DPDK vhost-user interface does not check to verify that all the requested guest physical range is mapped and contiguous when performing Guest Physical Addresses to Host Virtual Addresses translations. high complexity canonical redhat dpdk CWE-200	6.1