8 matches found
UBUNTU-CVE-2026-9539
An out-of-bounds heap read and integer underflow in the TCP urgent data handling sosendoob in freedesktop.org libslirp version before v4.9.2 on hypervisor host environments e.g., QEMU allows a privileged guest VM attacker root or CAPNETRAW to leak gigabytes of sensitive host-process heap memory v...
PT-2026-51663
Name of the Vulnerable Software and Affected Versions libslirp versions prior to v4.9.2 Description An integer underflow and out-of-bounds heap read exist in the TCP urgent data handling sosendoob within hypervisor host environments, such as QEMU. A privileged guest VM attacker with root or CAP N...
EUVD-2020-28344
Malware in sbrugna...
The vulnerability of the ip_reass() function in the TCP-IP emulator library Libslirp, related to memory usage after deallocation, allows a hacker to trigger a denial-of-service attack.
The vulnerability of the ipreass function in the TCP-IP emulator library Libslirp is related to the use of memory after it is freed. Exploiting this vulnerability could allow a attacker to cause a service failure...
CVE-2021-3594
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...
PT-2021-7991 · Libslirp +9 · Libslirp +9
Name of the Vulnerable Software and Affected Versions: libslirp versions prior to 4.6.0 Description: The issue is related to an invalid pointer initialization in the SLiRP networking implementation, specifically in the bootp input function. This could occur when processing a UDP packet smaller th...
Libslirp Buffer Over-Read Vulnerability
libslirp is a general-purpose TCP-IP emulator for managing virtual network services in a hypervisor. A buffer overread vulnerability exists in libslirp 4.3.1 and earlier versions of slirp.c. The vulnerability stems from slirp.c attempting to read a certain amount of header data even though the...
UBUNTU-CVE-2020-7039
tcpemu in tcpsubr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMUIRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code...