Debian 10261 Published by

A dpdk security update has been released for Debian GNU/Linux 10 and 11 to address two vulnerabilities.



DSA 5130-1: dpdk security update



- -------------------------------------------------------------------------
Debian Security Advisory DSA-5130-1 security@debian.org
  https://www.debian.org/security/ Moritz Muehlenhoff
May 05, 2022   https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : dpdk
CVE ID : CVE-2021-3839 CVE-2022-0669

Two vulnerabilities were discovered in the vhost code of DPDK, a set of
libraries for fast packet processing, which could result in denial of
service or the execution of arbitrary code.

The oldstable distribution (buster) is not affected.

For the stable distribution (bullseye), these problems have been fixed in
version 20.11.5-1~deb11u1.

We recommend that you upgrade your dpdk packages.

For the detailed security status of dpdk please refer to
its security tracker page at:
  https://security-tracker.debian.org/tracker/dpdk

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at:   https://www.debian.org/security/