Vulnerability Details : CVE-2022-0669

A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USER_GET_INFLIGHT_FD / VHOST_USER_SET_INFLIGHT_FD messages that are not closed by the vhost-user slave. By sending such messages continuously, the vhost-user master exhausts available fd in the vhost-user slave process, leading to a denial of service.

Vulnerability category: Denial of service

Published 2022-08-29 15:15:10

Updated 2022-09-01 20:35:47

Source Red Hat, Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2022-0669

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2022-0669

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
6.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H	2.0	4.0	nvd@nist.gov
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Changed Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2022-0669

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

Assigned by: secalert@redhat.com (Secondary)

References for CVE-2022-0669

https://github.com/DPDK/dpdk/commit/af74f7db384ed149fe42b21dbd7975f8a54ef227

vhost: fix FD leak with inflight messages · DPDK/dpdk@af74f7d · GitHub
Patch;Third Party Advisory
https://access.redhat.com/security/cve/CVE-2022-0669

CVE-2022-0669- Red Hat Customer Portal
Third Party Advisory
https://security-tracker.debian.org/tracker/CVE-2022-0669

CVE-2022-0669
Patch;Third Party Advisory
https://bugs.dpdk.org/show_bug.cgi?id=922

922 – CVE-2022-0669 State: Confirmed (Issue in handling of vhost-user inflight type messages)
Patch;Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2055793

2055793 – (CVE-2022-0669) CVE-2022-0669 dpdk: sending vhost-user-inflight type messages could lead to DoS
Issue Tracking;Patch;Third Party Advisory

Products affected by CVE-2022-0669

Redhat » Openshift Container Platform » Version: 4.0
cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*
Matching versions
Openvswitch » Openvswitch » Version: 2.15.0
cpe:2.3:a:openvswitch:openvswitch:2.15.0:*:*:*:*:*:*:*
Matching versions
Openvswitch » Openvswitch » Version: 2.13.0
cpe:2.3:a:openvswitch:openvswitch:2.13.0:*:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit
Versions from including (>=) 20.02 and before (<) 22.03
cpe:2.3:a:dpdk:data_plane_development_kit:*:*:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 22.03 Update RC2
cpe:2.3:a:dpdk:data_plane_development_kit:22.03:rc2:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 22.03 Update RC3
cpe:2.3:a:dpdk:data_plane_development_kit:22.03:rc3:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 22.03 Update RC1
cpe:2.3:a:dpdk:data_plane_development_kit:22.03:rc1:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 19.11
cpe:2.3:a:dpdk:data_plane_development_kit:19.11:*:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 19.11 Update RC1
cpe:2.3:a:dpdk:data_plane_development_kit:19.11:rc1:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 19.11 Update RC2
cpe:2.3:a:dpdk:data_plane_development_kit:19.11:rc2:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 19.11 Update RC3
cpe:2.3:a:dpdk:data_plane_development_kit:19.11:rc3:*:*:*:*:*:*
Matching versions
Dpdk » Data Plane Development Kit » Version: 19.11 Update RC4
cpe:2.3:a:dpdk:data_plane_development_kit:19.11:rc4:*:*:*:*:*:*
Matching versions