CVE-2022-0669
- Source
- https://cve.org/CVERecord?id=CVE-2022-0669
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-0669.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-0669
- Downstream
- Related
- Published
- 2022-08-29T14:03:04Z
- Modified
- 2026-05-08T04:48:28.789892Z
- Summary
- [none]
- Details
-
A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOSTUSERGETINFLIGHTFD / VHOSTUSERSETINFLIGHTFD messages that are not closed by the vhost-user slave. By sending such messages continuously, the vhost-user master exhausts available fd in the vhost-user slave process, leading to a denial of service.
- Database specific
{ "cwe_ids": [ "CWE-400" ], "unresolved_ranges": [ { "source": "AFFECTED_FIELD", "extracted_events": [ { "last_affected": "Affects v19.11-rc1 and later, Fixed in v22.03-rc4." } ] } ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0669.json", "cna_assigner": "redhat" }- References
-
- https://access.redhat.com/security/cve/CVE-2022-0669
- https://bugs.dpdk.org/show_bug.cgi?id=922
- https://security-tracker.debian.org/tracker/CVE-2022-0669
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0669.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-0669
- https://bugzilla.redhat.com/show_bug.cgi?id=2055793
- https://github.com/DPDK/dpdk/commit/af74f7db384ed149fe42b21dbd7975f8a54ef227
Affected packages
Git / github.com/openvswitch/ovs
Affected ranges
- Type
- GIT
- Repo
- https://github.com/openvswitch/ovs
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affected
- Database specific
{ "source": "CPE_FIELD", "extracted_events": [ { "introduced": "0" }, { "last_affected": "2.13.0" }, { "last_affected": "2.15.0" } ], "cpe": [ "cpe:2.3:a:openvswitch:openvswitch:2.13.0:*:*:*:*:*:*:*", "cpe:2.3:a:openvswitch:openvswitch:2.15.0:*:*:*:*:*:*:*" ] }