Out-of-Bounds Read Vulnerability in DPDK's Vhost Library
CVE-2024-11614

7.4HIGH

Key Information:

Status
Fast Datapath For Red Hat Enterprise Linux 8
Fast Datapath For Red Hat Enterprise Linux 9
Red Hat Enterprise Linux 8
Vendor
CVE Published:
18 December 2024

What is CVE-2024-11614?

CVE-2024-11614 is a critical out-of-bounds read vulnerability discovered in the Vhost library of the DPDK, specifically affecting its checksum offload feature. This vulnerability permits an untrusted or compromised virtual machine (VM) to manipulate the hypervisor's virtual switch (vSwitch) by forging Virtio descriptors, potentially leading to unauthorized out-of-bounds reads and subsequent crashes. An attacker can exploit this flaw by sending a crafted packet containing a transmission checksum offload request along with an invalid checksum start offset. Organizations relying on DPDK for high-performance networking must take immediate action to apply security patches and safeguard their systems against this serious threat.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://access.redhat.com/errata/RHSA-2025:0208
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:0209
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:0210
vendor-advisoryx_refsource_REDHAT

CVSS V3.0

Score:
7.4
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

JSON
.