CVE-2020-14378
Description
An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the move_desc function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause move_desc to get stuck in a 4,294,967,295-count iteration loop. Depending on how vhost_crypto is being used this could prevent other VMs or network tasks from being serviced by the busy DPDK lcore for an extended period.
Risk Information
Base Score
3.3
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
EPSS Score
Exploitation Probability
0.075
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| didact tool which allows teachers to view and control computer labs (USN-4547-1) italc-client_3.0.3+dfsg1-3ubuntu0.1_i386.deb | Linux |
| didact tool which allows teachers to view and control computer labs (USN-4547-1) italc-client_3.0.3+dfsg1-3ubuntu0.1_amd64.deb | Linux |
| didact tool which allows teachers to view and control computer labs (USN-4547-1) italc-master_3.0.3+dfsg1-3ubuntu0.1_i386.deb | Linux |
| didact tool which allows teachers to view and control computer labs (USN-4547-1) italc-master_3.0.3+dfsg1-3ubuntu0.1_amd64.deb | Linux |
| didact tool which allows teachers to view and control computer labs (USN-4547-1) libitalccore_3.0.3+dfsg1-3ubuntu0.1_i386.deb | Linux |
| didact tool which allows teachers to view and control computer labs (USN-4547-1) libitalccore_3.0.3+dfsg1-3ubuntu0.1_amd64.deb | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) dpdk-18.11.9-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) dpdk-debuginfo-18.11.9-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) dpdk-debugsource-18.11.9-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) dpdk-kmp-default-18.11.9_k4.12.14_122.37-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) dpdk-kmp-default-debuginfo-18.11.9_k4.12.14_122.37-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) dpdk-tools-18.11.9-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) dpdk-tools-debuginfo-18.11.9-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) libdpdk-18_11-18.11.9-3.15.1.x86_64.rpm | Linux |
| SUSE-SU-2020:2768-1(SUSE Linux Enterprise Server 12-SP5 ) libdpdk-18_11-debuginfo-18.11.9-3.15.1.x86_64.rpm | Linux |
| set of libraries for fast packet processing (USN-4550-1) dpdk_19.11.3-0ubuntu0.2_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234