CVE-2022-2132
published 2022-08-31CVE-2022-2132: A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted…
high8.6CVSS 3.1
AVNACLPRNUINSCCNINAH
A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | dpdk | < dpdk 22.11.1-2 (bookworm) | dpdk 22.11.1-2 (bookworm) |
| dpdk | data_plane_development_kit | < 19.11 | 19.11 |
| dpdk | data_plane_development_kit | >= 20.0 < 20.11 | 20.11 |
| dpdk | data_plane_development_kit | >= 21.0 < 21.11 | 21.11 |
| dpdk | dpdk | >= 0 < 20.11.6-1~deb11u1 | 20.11.6-1~deb11u1 |
| dpdk | dpdk | >= 0 < 22.11.1-2 | 22.11.1-2 |
| dpdk | dpdk | >= 0 < 22.11.1-2 | 22.11.1-2 |
| dpdk | dpdk | >= 0 < 22.11.1-2 | 22.11.1-2 |
| fedoraproject | fedora | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux_fast_datapath | — | — |
| redhat | enterprise_linux_fast_datapath | — | — |
| redhat | enterprise_linux_fast_datapath | — | — |
| redhat | openshift_container_platform | — | — |
| redhat | openstack_platform | — | — |
| redhat | virtualization | — | — |
CVSS provenance
nvdv3.18.6HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
osv8.6HIGH