Libslirp@* Security Vulnerabilities and Issues — Libslirp@* CVE List

Lucene search

Libslirp ProjectLibslirp*

4 matches found

CVE•added 2020/07/09 4:15 p.m.•493 views

CVE-2020-10756

An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo request, also known as ping. This flaw allows a malicious guest to leak the contents of the host memory, r...

6.5CVSS5.9AI score0.00036EPSS

CVE•added 2020/04/22 8:15 p.m.•474 views

CVE-2020-1983

A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service.

7.5CVSS7AI score0.00141EPSS

CVE•added 2020/11/26 8:15 p.m.•303 views

CVE-2020-29130

slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.

4.3CVSS6.1AI score0.00426EPSS

CVE•added 2020/11/26 8:15 p.m.•250 views

CVE-2020-29129

ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.

4.3CVSS5.8AI score0.0022EPSS