UbuntuUpdates.org

Package "librte-cfgfile20.0"

Name: librte-cfgfile20.0

Description:

Data Plane Development Kit (librte-cfgfile runtime library)

Latest version: 19.11.3-0ubuntu0.2
Release: focal (20.04)
Level: updates
Repository: universe
Head package: dpdk
Homepage: https://dpdk.org/doc/api/rte__cfgfile_8h.html

Links


Download "librte-cfgfile20.0"


Other versions of "librte-cfgfile20.0" in Focal

Repository Area Version
base universe 19.11.1-0ubuntu1
security universe 19.11.3-0ubuntu0.2

Changelog

Version: 19.11.3-0ubuntu0.2 2020-09-28 19:06:25 UTC

  dpdk (19.11.3-0ubuntu0.2) focal-security; urgency=medium

  * SECURITY UPDATE: Multiple security issues
    - debian/patches/CVE-2020-1437x/*.patch: added upstream patches to fix
      the issues.
    - CVE-2020-14374
    - CVE-2020-14375
    - CVE-2020-14376
    - CVE-2020-14377
    - CVE-2020-14378

 -- Marc Deslauriers <email address hidden> Thu, 17 Sep 2020 08:29:30 -0400

Source diff to previous version
CVE-2020-1437 An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory, aka 'Windows
CVE-2020-14374 RESERVED
CVE-2020-14375 RESERVED
CVE-2020-14376 RESERVED
CVE-2020-14377 RESERVED
CVE-2020-14378 RESERVED

Version: 19.11.3-0ubuntu0.1 2020-08-10 15:06:36 UTC

  dpdk (19.11.3-0ubuntu0.1) focal; urgency=medium

  * Merge latest stable DPDK release 19.11.3; for a full list of changes see:
    https://doc.dpdk.org/guides-19.11/rel_notes/release_19_11.html#release-notes
    (LP: #1885915)
  * Remaining Changes:
    - d/control: disable libbpf-dev build dependency while waiting for the
      kernel to build it for LP: 1836708 1826410.
    - d/control: remove librte-pmd-af-xdp20.0 until libbpf-dev is available
    - d/p/revert-net-ipn3ke-fix-meson-build.patch: avoid adding new shared
      objects and binary packages
    - Revert "add new packages which didn't build"
  * Dropped changes
    - drop security patches being included in 19.11.3
      - d/p/0001-vhost-check-log-mmap-offset-and-size-overflow.patch
      - d/p/0002-vhost-fix-vring-index-check.patch
      - d/p/0003-vhost-crypto-validate-keys-lengths.patch
      - d/p/0004-vhost-fix-translated-address-not-checked.patch
      - d/p/0005-vhost-fix-potential-memory-space-leak.patch
      - d/p/0006-vhost-fix-potential-fd-leak.patch
  * Added changes:
    - d/p/19.11-remove-zero-copy-and-client-mode-restriction.patch: avoid
      dropping a used feature with the stable update

 -- Christian Ehrhardt <email address hidden> Thu, 02 Jul 2020 08:41:28 +0200

Source diff to previous version
1885915 merge latest DPDK LTS versions into Ubuntu LTS's

Version: 19.11.1-0ubuntu1.1 2020-05-18 17:06:58 UTC

  dpdk (19.11.1-0ubuntu1.1) focal-security; urgency=medium

  * SECURITY UPDATE: Integer overflow in vhost_user_set_log_base()
    - d/p/0001-vhost-check-log-mmap-offset-and-size-overflow.patch: check
      log mmap offset and size overflow in lib/librte_vhost/vhost_user.c.
    - CVE-2020-10722
  * SECURITY UPDATE: Int truncation in vhost_user_check_and_alloc_queue_pair()
    - d/p/0002-vhost-fix-vring-index-check.patch: fix vring index check in
      lib/librte_vhost/vhost_user.c.
    - CVE-2020-10723
  * SECURITY UPDATE: Missing inputs validation in Vhost-crypto
    - d/p/0003-vhost-crypto-validate-keys-lengths.patch: validate keys
      lengths in lib/librte_vhost/vhost_crypto.c.
    - CVE-2020-10724
  * SECURITY UPDATE: Malicious guest could cause segfault by sending
    invalid Virtio descriptor
    - d/p/0004-vhost-fix-translated-address-not-checked.patch: fix
      translated address not checked in lib/librte_vhost/virtio_net.c.
    - CVE-2020-10725
  * SECURITY UPDATE: VHOST_USER_GET_INFLIGHT_FD message flooding to result
    in a DOS
    - d/p/0005-vhost-fix-potential-memory-space-leak.patch: fix potential
      memory space leak in lib/librte_vhost/vhost_user.c.
    - d/p/0006-vhost-fix-potential-fd-leak.patch: fix potential fd leak in
      lib/librte_vhost/vhost_user.c.
    - CVE-2020-10726

 -- Marc Deslauriers <email address hidden> Tue, 12 May 2020 07:34:18 -0400

CVE-2020-10722 RESERVED
CVE-2020-10723 RESERVED
CVE-2020-10724 RESERVED
CVE-2020-10725 RESERVED
CVE-2020-10726 RESERVED



About   -   Send Feedback to @ubuntu_updates