VYPR

libslirp

by libslirp

CVEs (5)

  • CVE-2019-14378HigJul 29, 2019
    risk 0.62cvss 8.8epss 0.17

    ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.

  • CVE-2020-8608MedFeb 6, 2020
    risk 0.37cvss 5.6epss 0.02

    In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code.

  • CVE-2020-29130MedNov 26, 2020
    risk 0.28cvss 4.3epss 0.02

    slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.

  • CVE-2020-29129MedNov 26, 2020
    risk 0.28cvss 4.3epss 0.01

    ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.

  • CVE-2020-1983HigApr 22, 2020
    risk 0.00cvss 7.5epss 0.02

    A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service.