Security update for dpdk SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2026:20055-1 Final 1 1 2025-12-30T20:05:16Z current 2025-12-30T20:05:16Z 2025-12-30T20:05:16Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for dpdk This update for dpdk fixes the following issues: Update to version 22.11.10. Security issues fixed: - CVE-2025-23259: issue in the Poll Mode Driver (PMD) allows an attacker on a VM in the system to leak information and cause a denial of service on the network interface (bsc#1254161). Other updates and bugfixes: - Fix SUSE provided DPDK modules tainting the kernel as unsupported (bsc#1214724). Upstream release notes: - Version 22.11.9 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id24 - Version 22.11.8 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id21 - Version 22.11.7 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id18 - Version 22.11.6 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id15 - Version 22.11.5 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id12 - Version 22.11.4 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id8 - Version 22.11.3 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id4 - Version 22.11.2 https://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html#id2 The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-Micro-6.1-361 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2026/suse-su-202620055-1/ Link for SUSE-SU-2026:20055-1 https://lists.suse.com/pipermail/sle-security-updates/2026-January/023754.html E-Mail link for SUSE-SU-2026:20055-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1214724 SUSE Bug 1214724 https://bugzilla.suse.com/1234718 SUSE Bug 1234718 https://bugzilla.suse.com/1254161 SUSE Bug 1254161 https://www.suse.com/security/cve/CVE-2024-11614/ SUSE CVE CVE-2024-11614 page https://www.suse.com/security/cve/CVE-2025-23259/ SUSE CVE CVE-2025-23259 page SUSE Linux Micro 6.1 dpdk-22.11.10-slfo.1.1_1.1 dpdk-tools-22.11.10-slfo.1.1_1.1 libdpdk-23-22.11.10-slfo.1.1_1.1 dpdk-22.11.10-slfo.1.1_1.1 as a component of SUSE Linux Micro 6.1 dpdk-tools-22.11.10-slfo.1.1_1.1 as a component of SUSE Linux Micro 6.1 libdpdk-23-22.11.10-slfo.1.1_1.1 as a component of SUSE Linux Micro 6.1 An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the hypervisor's vSwitch by forging Virtio descriptors to cause out-of-bounds reads. This flaw allows an attacker with a malicious VM using a virtio driver to cause the vhost-user side to crash by sending a packet with a Tx checksum offload request and an invalid csum_start offset. CVE-2024-11614 SUSE Linux Micro 6.1:dpdk-22.11.10-slfo.1.1_1.1 SUSE Linux Micro 6.1:dpdk-tools-22.11.10-slfo.1.1_1.1 SUSE Linux Micro 6.1:libdpdk-23-22.11.10-slfo.1.1_1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2026/suse-su-202620055-1/ https://www.suse.com/security/cve/CVE-2024-11614.html CVE-2024-11614 https://bugzilla.suse.com/1234718 SUSE Bug 1234718 NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver (PMD), where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface. CVE-2025-23259 SUSE Linux Micro 6.1:dpdk-22.11.10-slfo.1.1_1.1 SUSE Linux Micro 6.1:dpdk-tools-22.11.10-slfo.1.1_1.1 SUSE Linux Micro 6.1:libdpdk-23-22.11.10-slfo.1.1_1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2026/suse-su-202620055-1/ https://www.suse.com/security/cve/CVE-2025-23259.html CVE-2025-23259 https://bugzilla.suse.com/1254161 SUSE Bug 1254161