Lucene search
K

8 matches found

OSV
OSV
added 2026/06/24 5:17 a.m.5 views

UBUNTU-CVE-2026-9539

An out-of-bounds heap read and integer underflow in the TCP urgent data handling sosendoob in freedesktop.org libslirp version before v4.9.2 on hypervisor host environments e.g., QEMU allows a privileged guest VM attacker root or CAPNETRAW to leak gigabytes of sensitive host-process heap memory v...

6.5CVSS5.9AI score0.00106EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.13 views

PT-2026-51663

Name of the Vulnerable Software and Affected Versions libslirp versions prior to v4.9.2 Description An integer underflow and out-of-bounds heap read exist in the TCP urgent data handling sosendoob within hypervisor host environments, such as QEMU. A privileged guest VM attacker with root or CAP N...

6.5CVSS5.8AI score0.00106EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-28344

Malware in sbrugna...

7.5CVSS8AI score0.04141EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2021/07/15 12:0 a.m.8 views

The vulnerability of the ip_reass() function in the TCP-IP emulator library Libslirp, related to memory usage after deallocation, allows a hacker to trigger a denial-of-service attack.

The vulnerability of the ipreass function in the TCP-IP emulator library Libslirp is related to the use of memory after it is freed. Exploiting this vulnerability could allow a attacker to cause a service failure...

6.5CVSS6.8AI score0.02293EPSS
Exploits1References9Affected Software4
Debian CVE
Debian CVE
added 2021/06/15 12:0 a.m.28 views

CVE-2021-3594

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

3.8CVSS6AI score0.00326EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/06/04 12:0 a.m.6 views

PT-2021-7991 · Libslirp +9 · Libslirp +9

Name of the Vulnerable Software and Affected Versions: libslirp versions prior to 4.6.0 Description: The issue is related to an invalid pointer initialization in the SLiRP networking implementation, specifically in the bootp input function. This could occur when processing a UDP packet smaller th...

8.8CVSS6.1AI score0.03566EPSS
Exploits11References410
CNVD
CNVD
added 2020/11/27 12:0 a.m.6 views

Libslirp Buffer Over-Read Vulnerability

libslirp is a general-purpose TCP-IP emulator for managing virtual network services in a hypervisor. A buffer overread vulnerability exists in libslirp 4.3.1 and earlier versions of slirp.c. The vulnerability stems from slirp.c attempting to read a certain amount of header data even though the...

4.3CVSS6.5AI score0.0183EPSS
Exploits1References1
OSV
OSV
added 2020/01/16 11:15 p.m.2 views

UBUNTU-CVE-2020-7039

tcpemu in tcpsubr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMUIRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code...

5.6CVSS7.3AI score0.03566EPSS
Exploits0References6
Rows per page
Query Builder