GCVE - cpe:2.3:a:[unknown]:dpdk:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:[unknown]:dpdk:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	[Unknown] (`5b07108a-8f0c-5d28-ab99-c4ff62adb460`)
Product	Dpdk (`e1a6bd4d-312c-583d-b438-6c53c3045c0a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-10726`	vulnerable	2026-06-03 14:41:00.434802	Details available MEDIUM (6) A vulnerability was found in DPDK versions 19.11 and above. A malicious container that has direct access to the vhost-user socket can keep sending VHOST_USER_GET_INFLIGHT_FD messages, causing a resource leak (file descriptors and virtual memory), which may result in a denial of service. Published: 2020-05-20T13:04:47.000Z Updated: 2024-08-04T11:14:15.435Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00045.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HRHKFVV4MRWNNJOYQOVP64L4UVWYPEO4/ https://www.openwall.com/lists/oss-security/2020/05/18/2 https://www.oracle.com/security-alerts/cpujan2021.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10726	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-10725`	vulnerable	2026-06-03 14:41:00.434279	Details available HIGH (7.7) A flaw was found in DPDK version 19.11 and above that allows a malicious guest to cause a segmentation fault of the vhost-user backend application running on the host, which could result in a loss of connectivity for the other guests running on that host. This is caused by a missing validity check of the descriptor address in the function `virtio_dev_rx_batch_packed()`. Published: 2020-05-20T13:16:55.000Z Updated: 2024-08-04T11:14:14.236Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00045.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HRHKFVV4MRWNNJOYQOVP64L4UVWYPEO4/ https://www.openwall.com/lists/oss-security/2020/05/18/2 https://www.oracle.com/security-alerts/cpujan2021.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10725	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-10724`	vulnerable	2026-06-03 14:41:00.433762	Details available MEDIUM (5.1) A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-bounds memory read. Published: 2020-05-19T17:59:21.000Z Updated: 2024-08-04T11:14:15.210Z Open on db.gcve.eu Reference links https://usn.ubuntu.com/4362-1/ http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00045.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HRHKFVV4MRWNNJOYQOVP64L4UVWYPEO4/ https://www.oracle.com/security-alerts/cpuoct2020.html https://www.openwall.com/lists/oss-security/2020/05/18/2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-10723`	vulnerable	2026-06-03 14:41:00.433118	Details available MEDIUM (5.1) A memory corruption issue was found in DPDK versions 17.05 and above. This flaw is caused by an integer truncation on the index of a payload. Under certain circumstances, the index (a UInt) is copied and truncated into a uint16, which can lead to out of bound indexing and possible memory corruption. Published: 2020-05-19T18:02:46.000Z Updated: 2024-08-04T11:14:14.697Z Open on db.gcve.eu Reference links https://usn.ubuntu.com/4362-1/ http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00045.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HRHKFVV4MRWNNJOYQOVP64L4UVWYPEO4/ https://www.oracle.com/security-alerts/cpuoct2020.html https://www.openwall.com/lists/oss-security/2020/05/18/2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-10722`	vulnerable	2026-06-03 14:41:00.429492	Details available MEDIUM (5.1) A vulnerability was found in DPDK versions 18.05 and above. A missing check for an integer overflow in vhost_user_set_log_base() could result in a smaller memory map than requested, possibly allowing memory corruption. Published: 2020-05-19T18:04:15.000Z Updated: 2024-08-04T11:14:14.909Z Open on db.gcve.eu Reference links https://usn.ubuntu.com/4362-1/ http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00045.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HRHKFVV4MRWNNJOYQOVP64L4UVWYPEO4/ https://www.oracle.com/security-alerts/cpuoct2020.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10722	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.