EUVD-2020-28344

Malware in sbrugna...

The vulnerability of the ip_reass() function in the TCP-IP emulator library Libslirp, related to memory usage after deallocation, allows a hacker to trigger a denial-of-service attack.

The vulnerability of the ipreass function in the TCP-IP emulator library Libslirp is related to the use of memory after it is freed. Exploiting this vulnerability could allow a attacker to cause a service failure...

CVE-2021-3594

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

PT-2021-7991 · Libslirp +9 · Libslirp +9

Name of the Vulnerable Software and Affected Versions: libslirp versions prior to 4.6.0 Description: The issue is related to an invalid pointer initialization in the SLiRP networking implementation, specifically in the bootp input function. This could occur when processing a UDP packet smaller th...

Libslirp Buffer Over-Read Vulnerability

libslirp is a general-purpose TCP-IP emulator for managing virtual network services in a hypervisor. A buffer overread vulnerability exists in libslirp 4.3.1 and earlier versions of slirp.c. The vulnerability stems from slirp.c attempting to read a certain amount of header data even though the...

UBUNTU-CVE-2020-7039

tcpemu in tcpsubr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMUIRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code...