[USN-7816-1] DPDK vulnerability
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Oct 9 17:41:45 UTC 2025
==========================================================================
Ubuntu Security Notice USN-7816-1
October 09, 2025
dpdk vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 25.04
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
Summary:
DPDK could be made to crash if it received specially crafted network
traffic.
Software Description:
- dpdk: set of libraries for fast packet processing
Details:
It was discovered that DPDK incorrectly handled the mlx5 Ethernet poll mode
driver. An attacker could possibly use this issue to obtain sensitive
information, or cause the network interface to crash, resulting in a denial
of service.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.04
dpdk 24.11.2-0ubuntu0.25.04.2
Ubuntu 24.04 LTS
dpdk 23.11.4-0ubuntu0.24.04.2
Ubuntu 22.04 LTS
dpdk 21.11.9-0ubuntu0.22.04.2
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7816-1
CVE-2025-23259
Package Information:
https://launchpad.net/ubuntu/+source/dpdk/24.11.2-0ubuntu0.25.04.2
https://launchpad.net/ubuntu/+source/dpdk/23.11.4-0ubuntu0.24.04.2
https://launchpad.net/ubuntu/+source/dpdk/21.11.9-0ubuntu0.22.04.2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/ubuntu-security-announce/attachments/20251009/8bef24ab/attachment.sig>
More information about the ubuntu-security-announce
mailing list