PT-2020-6230 · Libslirp+8 · Libslirp+8

Aviv Sasson

·

Published

2020-04-20

·

Updated

2024-11-08

·

CVE-2020-1983

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions libslirp versions 4.2.0 and prior releases
Description The issue is related to a use after free vulnerability in the ip reass() function in ip input.c of the libslirp library. This vulnerability can be exploited by crafted packets, leading to a denial of service.
Recommendations For libslirp versions 4.2.0 and prior releases, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2020:3053
ALSA-2020:4676
ALT-PU-2020-1939
ALT-PU-2020-2428
ALT-PU-2020-2431
BDU:2021-03631
CESA-2020_3053
CESA-2020_4079
CESA-2020_4676
CVE-2020-1983
DLA-2262-1
DLA-2288-1
DSA-4665-1
OPENSUSE-SU-2020:0636-1
OPENSUSE-SU-2020:0756-1
OPENSUSE-SU-2020_0636-1
OPENSUSE-SU-2020_0756-1
OPENSUSE-SU-2024:10991-1
OPENSUSE-SU-2024:11287-1
RHSA-2020:3053
RHSA-2020:4079
RHSA-2020:4290
RHSA-2020:4676
RHSA-2020_3053
RHSA-2020_4079
RHSA-2020_4676
RHSA-2021:0346
RHSA-2021:0459
RHSA-2021:0934
RHSA-2021_0346
RLSA-2020:3053
RLSA-2020:4676
SUSE-SU-2020:1197-1
SUSE-SU-2020:14396-1
SUSE-SU-2020:1501-1
SUSE-SU-2020:1502-1
SUSE-SU-2020:1514-1
SUSE-SU-2020:1516-1
SUSE-SU-2020:1523-1
SUSE-SU-2020:1526-1
SUSE-SU-2020:1538-1
SUSE-SU-2020_1197-1
SUSE-SU-2020_1501-1
SUSE-SU-2020_1502-1
SUSE-SU-2020_1514-1
SUSE-SU-2020_1516-1
SUSE-SU-2020_1523-1
SUSE-SU-2020_1526-1
SUSE-SU-2020_1538-1
SUSE-SU-2021:14706-1
USN-4372-1
USN-7094-1

Affected Products

Alt Linux
Almalinux
Centos
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu
Libslirp