CVE-2020-10722
- EPSS 0.13%
- Published 19.05.2020 19:15:09
- Last modified 21.11.2024 04:55:55
A vulnerability was found in DPDK versions 18.05 and above. A missing check for an integer overflow in vhost_user_set_log_base() could result in a smaller memory map than requested, possibly allowing memory corruption.
CVE-2020-10723
- EPSS 0.13%
- Published 19.05.2020 19:15:09
- Last modified 21.11.2024 04:55:55
A memory corruption issue was found in DPDK versions 17.05 and above. This flaw is caused by an integer truncation on the index of a payload. Under certain circumstances, the index (a UInt) is copied and truncated into a uint16, which can lead to out...
CVE-2020-10724
- EPSS 0.08%
- Published 19.05.2020 19:15:09
- Last modified 21.11.2024 04:55:56
A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-bounds memory read.
CVE-2019-14818
- EPSS 1.14%
- Published 14.11.2019 17:15:14
- Last modified 21.11.2024 04:27:25
A flaw was found in all dpdk version 17.x.x before 17.11.8, 16.x.x before 16.11.10, 18.x.x before 18.11.4 and 19.x.x before 19.08.1 where a malicious master, or a container with access to vhost_user socket, can send specially crafted VRING_SET_NUM me...
CVE-2018-1059
- EPSS 0.26%
- Published 24.04.2018 18:29:00
- Last modified 21.11.2024 03:59:05
The DPDK vhost-user interface does not check to verify that all the requested guest physical range is mapped and contiguous when performing Guest Physical Addresses to Host Virtual Addresses translations. This may lead to a malicious guest exposing v...