An update for dpdk is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2022-1965 Final 1.0 1.0 2022-09-29 Initial 2022-09-29 2022-09-29 openEuler SA Tool V1.0 2022-09-29 dpdk security update An update for dpdk is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS. DPDK core includes kernel modules, core libraries and tools.testpmd application allows to test fast packet processing environments on arm64 platforms. For instance, it can be used to check that environment can support fast path applications such as 6WINDGate, pktgen, rumptcpip, etc. More libraries are available as extensions in other packages. Security Fix(es): NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to cause denial of service and some impact to data integrity and confidentiality.(CVE-2022-28199) An update for dpdk is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High dpdk https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1965 https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2022-28199 https://nvd.nist.gov/vuln/detail/CVE-2022-28199 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP3 openEuler-22.03-LTS dpdk-devel-19.11-20.oe1.aarch64.rpm dpdk-tools-19.11-20.oe1.aarch64.rpm dpdk-debuginfo-19.11-20.oe1.aarch64.rpm dpdk-debugsource-19.11-20.oe1.aarch64.rpm dpdk-19.11-20.oe1.aarch64.rpm dpdk-devel-19.11-20.oe1.aarch64.rpm dpdk-debuginfo-19.11-20.oe1.aarch64.rpm dpdk-tools-19.11-20.oe1.aarch64.rpm dpdk-19.11-20.oe1.aarch64.rpm dpdk-debugsource-19.11-20.oe1.aarch64.rpm dpdk-debugsource-21.11-17.oe2203.aarch64.rpm dpdk-debuginfo-21.11-17.oe2203.aarch64.rpm dpdk-21.11-17.oe2203.aarch64.rpm dpdk-tools-21.11-17.oe2203.aarch64.rpm dpdk-devel-21.11-17.oe2203.aarch64.rpm dpdk-doc-19.11-20.oe1.noarch.rpm dpdk-doc-19.11-20.oe1.noarch.rpm dpdk-doc-21.11-17.oe2203.noarch.rpm dpdk-19.11-20.oe1.src.rpm dpdk-19.11-20.oe1.src.rpm dpdk-21.11-17.oe2203.src.rpm dpdk-debuginfo-19.11-20.oe1.x86_64.rpm dpdk-devel-19.11-20.oe1.x86_64.rpm dpdk-19.11-20.oe1.x86_64.rpm dpdk-debugsource-19.11-20.oe1.x86_64.rpm dpdk-tools-19.11-20.oe1.x86_64.rpm dpdk-19.11-20.oe1.x86_64.rpm dpdk-debuginfo-19.11-20.oe1.x86_64.rpm dpdk-devel-19.11-20.oe1.x86_64.rpm dpdk-tools-19.11-20.oe1.x86_64.rpm dpdk-debugsource-19.11-20.oe1.x86_64.rpm dpdk-tools-21.11-17.oe2203.x86_64.rpm dpdk-devel-21.11-17.oe2203.x86_64.rpm dpdk-debuginfo-21.11-17.oe2203.x86_64.rpm dpdk-21.11-17.oe2203.x86_64.rpm dpdk-debugsource-21.11-17.oe2203.x86_64.rpm NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to cause denial of service and some impact to data integrity and confidentiality. 2022-09-29 CVE-2022-28199 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP3 openEuler-22.03-LTS High 8.6 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H dpdk security update 2022-09-29 https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1965