Intel · Spdk · CVE-2019-9547
**Name of the Vulnerable Software and Affected Versions**
Storage Performance Development Kit (SPDK) versions prior to 19.01
**Description**
A malicious vhost client could construct a circular descriptor chain, resulting in a partial denial of service in the SPDK vhost target. This occurs because the vhost target did not properly detect such chains.
**Recommendations**
For versions prior to 19.01, update to version 19.01 or later to resolve the issue.