3 matches found
SUSE-SU-2022:2941-1 Security update for libslirp
This update for libslirp fixes the following issues: - CVE-2021-3593: Fixed invalid pointer initialization may lead to information disclosure udp6 bsc1187365. Non-security fixes: - Fix the version header bsc1201551...
SUSE-SU-2022:1465-1 Security update for libslirp
This update for libslirp fixes the following issues: - CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure bootp bsc1187364. - CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure udp bsc1187367. - CVE-2021-3595: Fixed invalid...
MGASA-2021-0480 Updated libslirp packages fix security vulnerability
Invalid pointer initialization issues were found in the SLiRP networking implementation of QEMU. In the bootpinput function while processing a udp packet that is smaller than the size of the 'bootpt' structure. A malicious guest could use this flaw to leak 10 bytes of uninitialized heap memory fr...