{"id":"UBUNTU-CVE-2019-14818","details":"A flaw was found in all dpdk version 17.x.x before 17.11.8, 16.x.x before 16.11.10, 18.x.x before 18.11.4 and 19.x.x before 19.08.1 where a malicious master, or a container with access to vhost_user socket, can send specially crafted VRING_SET_NUM messages, resulting in a memory leak including file descriptors. This flaw could lead to a denial of service condition.","modified":"2026-04-22T13:34:07.429104Z","published":"2019-11-12T15:00:00Z","related":["USN-4189-1"],"upstream":["CVE-2019-14818"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2019-14818"},{"type":"REPORT","url":"http://mails.dpdk.org/archives/announce/2019-November/000293.html"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4189-1"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2019-14818"}],"affected":[{"package":{"name":"dpdk","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/dpdk@2.2.0-0ubuntu8?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["2.0.0-0ubuntu1","2.0.0-0ubuntu2","2.0.0-0ubuntu3","2.2.0-0ubuntu1","2.2.0-0ubuntu3","2.2.0-0ubuntu5","2.2.0-0ubuntu6","2.2.0-0ubuntu7","2.2.0-0ubuntu8"],"ecosystem_specific":{"binaries":[{"binary_name":"dpdk","binary_version":"2.2.0-0ubuntu8"},{"binary_name":"libdpdk0","binary_version":"2.2.0-0ubuntu8"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-14818.json"}},{"package":{"name":"dpdk","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/dpdk@17.11.8-0~ubuntu18.04.2?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"17.11.8-0~ubuntu18.04.2"}]}],"versions":["17.05.2-0ubuntu1","17.05.2-0ubuntu2","17.11-3","17.11-4","17.11-5","17.11.1-6","17.11.2-1ubuntu0.1","17.11.3-3~ubuntu0.18.04","17.11.5-0~ubuntu18.04.1","17.11.6-0~ubuntu18.04.1"],"ecosystem_specific":{"binaries":[{"binary_name":"dpdk","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"dpdk-igb-uio-dkms","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"dpdk-rte-kni-dkms","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-acl17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-bitratestats17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-bus-pci17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-bus-vdev17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-cfgfile17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-cmdline17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-cryptodev17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-distributor17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-eal17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-efd17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-ethdev17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-eventdev17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-flow-classify17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-gro17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-gso17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-hash17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-ip-frag17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-jobstats17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-kni17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-kvargs17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-latencystats17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-lpm17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-mbuf17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-member17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-mempool-octeontx17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-mempool-ring17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-mempool-stack17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-mempool17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-meter17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-metrics17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-net17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pci17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pdump17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pipeline17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-af-packet17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-ark17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-avp17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-bnxt17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-bond17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-crypto-scheduler17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-cxgbe17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-e1000-17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-ena17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-enic17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-failsafe17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-fm10k17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-i40e17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-ixgbe17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-kni17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-lio17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-mlx4-17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-mlx5-17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-nfp17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-null-crypto17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-null17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-octeontx-ssovf17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-octeontx17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-pcap17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-qede17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-ring17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-sfc-efx17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-skeleton-event17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-softnic17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-sw-event17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-tap17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-thunderx-nicvf17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-vhost17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-virtio17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-pmd-vmxnet3-uio17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-port17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-power17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-reorder17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-ring17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-sched17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-security17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-table17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-timer17.11","binary_version":"17.11.8-0~ubuntu18.04.2"},{"binary_name":"librte-vhost17.11","binary_version":"17.11.8-0~ubuntu18.04.2"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-14818.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]}