Back to search
CVE-2019-14378
Published: Jul 29, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20190801 CVE-2019-14378 QEMU: slirp: heap buffer overflow during packet reassembly
mailing-list
x_refsource_MLIST
FEDORA-2019-77bafc4454
vendor-advisory
x_refsource_FEDORA
20190825 [SECURITY] [DSA 4506-1] qemu security update
mailing-list
x_refsource_BUGTRAQ
DSA-4506
vendor-advisory
x_refsource_DEBIAN
https://news.ycombinator.com/item?id=20799010
x_refsource_MISC
openSUSE-SU-2019:2041
vendor-advisory
x_refsource_SUSE
DSA-4512
vendor-advisory
x_refsource_DEBIAN
20190902 [SECURITY] [DSA 4512-1] qemu security update
mailing-list
x_refsource_BUGTRAQ
openSUSE-SU-2019:2059
vendor-advisory
x_refsource_SUSE
https://support.f5.com/csp/article/K25423748
x_refsource_CONFIRM
[debian-lts-announce] 20190920 [SECURITY] [DLA 1927-1] qemu security update
mailing-list
x_refsource_MLIST
RHSA-2019:3179
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3403
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3494
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3742
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3787
vendor-advisory
x_refsource_REDHAT
USN-4191-2
vendor-advisory
x_refsource_UBUNTU
openSUSE-SU-2019:2510
vendor-advisory
x_refsource_SUSE
USN-4191-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2019:3968
vendor-advisory
x_refsource_REDHAT
RHSA-2019:4344
vendor-advisory
x_refsource_REDHAT
RHSA-2020:0366
vendor-advisory
x_refsource_REDHAT
RHSA-2020:0775
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now