CVE-2020-29130

Published: Nov 26, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://lists.freedesktop.org/archives/slirp/2020-November/000115.html

[oss-security] 20201127 CVE-2020-29129 CVE-2020-29130 QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets

mailing-list

FEDORA-2020-77f93f41be

vendor-advisory

FEDORA-2020-331e1318dd

vendor-advisory

[debian-lts-announce] 20210218 [SECURITY] [DLA 2560-1] qemu security update

mailing-list

[debian-lts-announce] 20230314 [SECURITY] [DLA 3362-1] qemu security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-29130

Description

Affected Products

References