Endpoint Vulnerability

CVE-2019-14818dpdk: possible memory leak leads to denial of service

Description

A flaw was found in dpdk where a malicious master, or a container with access to vhost_user socket, can send specially crafted VRING_SET_NUM messages, resulting in a memory leak including file descriptors. This flaw could lead to a denial of service condition.

Affected Products

dpdk

References

CVE-2019-14818,