{"affected":[{"ecosystem_specific":{"binaries":[{"dpdk":"24.11.4-150700.3.6.1","dpdk-devel":"24.11.4-150700.3.6.1","dpdk-thunderx":"24.11.4-150700.3.6.1","dpdk-thunderx-devel":"24.11.4-150700.3.6.1","dpdk-tools":"24.11.4-150700.3.6.1","libdpdk-25":"24.11.4-150700.3.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Server Applications 15 SP7","name":"dpdk","purl":"pkg:rpm/suse/dpdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"24.11.4-150700.3.6.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"dpdk":"24.11.4-150700.3.6.1","dpdk-devel":"24.11.4-150700.3.6.1","dpdk-thunderx":"24.11.4-150700.3.6.1","dpdk-thunderx-devel":"24.11.4-150700.3.6.1","dpdk-tools":"24.11.4-150700.3.6.1","libdpdk-25":"24.11.4-150700.3.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Server Applications 15 SP7","name":"dpdk-thunderx","purl":"pkg:rpm/suse/dpdk-thunderx&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"24.11.4-150700.3.6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for dpdk fixes the following issues:\n\nUpdate to version 24.11.4:\n  \n- CVE-2025-23259: Fixed an attacker on a VM in the system can cause information disclosure and denial of service (bsc#1254161).\n\nChangelog:\n\nhttps://doc.dpdk.org/guides-24.11/rel_notes/release_24_11.html#id10\nhttps://doc.dpdk.org/guides-24.11/rel_notes/release_24_11.html#id5\n","id":"SUSE-SU-2026:0238-1","modified":"2026-01-22T12:26:26Z","published":"2026-01-22T12:26:26Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20260238-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1254161"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-23259"}],"related":["CVE-2025-23259"],"summary":"Security update for dpdk","upstream":["CVE-2025-23259"]}