Lucene search
Veracode Vulnerability DatabaseVERACODE:30970HistoryJun 16, 2021 - 12:02 a.m.
Information Disclosure
2021-06-1600:02:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
0.0005 Low
EPSS
Percentile
16.3%
libslirp is vulnerable to information disclosure. The flaw exists in the udp6_input() function and could occur while processing a udp packet that is smaller than the size of the ‘udphdr’ structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest.
References
bugzilla.redhat.com/show_bug.cgi?id=1970487
lists.debian.org/debian-lts-announce/2022/04/msg00002.html
lists.fedoraproject.org/archives/list/[email protected]/message/GCKWZWY64EHTOQMLVLTSZ4AA27EWRJMH/
lists.fedoraproject.org/archives/list/[email protected]/message/SGPQZFVJCFGDSISFXPCQTTBBD7QZLJKI/
secdb.alpinelinux.org/edge/community.yaml
security.gentoo.org/glsa/202107-44
security.netapp.com/advisory/ntap-20210805-0004/
Related
nvd
nvd
CVE-2021-3593
2021-06-15 21:15:09
cve
cve
CVE-2021-3593
2021-06-15 21:15:09
alpinelinux
alpinelinux
CVE-2021-3593
2021-06-15 21:15:09
openvas
openvas
openSUSE: Security Advisory for libslirp (SUSE-SU-2022:2941-1)
2022-08-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2941-1)
2022-08-30 00:00:00
Mageia: Security Advisory (MGASA-2021-0480)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2021-3593
2021-06-15 21:15:09
suse
suse
Security update for libslirp (moderate)
2022-09-01 00:00:00
Security update for libslirp (moderate)
2022-08-30 00:00:00
Security update for qemu (important)
2021-07-27 00:00:00
cvelist
cvelist
CVE-2021-3593
2021-06-15 00:00:00
osv
osv
CVE-2021-3593
2021-06-15 21:15:09
qemu - security update
2022-04-04 00:00:00
libslirp vulnerabilities
2021-07-15 17:23:21
prion
prion
Out-of-bounds
2021-06-15 21:15:00
ubuntucve
ubuntucve
CVE-2021-3593
2021-06-15 00:00:00
nessus
nessus
SUSE SLES15 Security Update : libslirp (SUSE-SU-2022:2941-1)
2022-08-31 00:00:00
RHEL 8 : qemu-kvm-ma (Unpatched Vulnerability)
2024-06-03 00:00:00
Amazon Linux 2 : qemu (ALAS-2023-2169)
2023-07-26 00:00:00
redhatcve
redhatcve
CVE-2021-3593
2021-06-15 13:47:02
fedora
fedora
[SECURITY] Fedora 33 Update: libslirp-4.3.1-5.fc33
2021-07-04 01:09:15
[SECURITY] Fedora 34 Update: libslirp-4.4.0-4.fc34
2021-07-04 01:07:58
archlinux
archlinux
[ASA-202106-49] libslirp: information disclosure
2021-06-22 00:00:00
gentoo
gentoo
libslirp: Multiple vulnerabilities
2021-07-20 00:00:00
mageia
mageia
Updated libslirp packages fix security vulnerability
2021-10-21 00:28:32
amazon
amazon
Low: qemu
2023-07-20 17:29:00
debian
debian
[SECURITY] [DLA 2970-1] qemu security update
2022-04-04 13:21:47
[SECURITY] [DLA 3362-1] qemu security update
2023-03-14 21:01:53
ubuntu
ubuntu
libslirp vulnerabilities
2021-07-15 00:00:00
libslirp vulnerabilities
2021-10-26 00:00:00
QEMU vulnerabilities
2021-07-15 00:00:00
redhat
redhat
almalinux
almalinux
oraclelinux
oraclelinux
virt:ol and virt-devel:ol security, bug fix, and enhancement update
2021-11-16 00:00:00
qemu security update
2022-01-04 00:00:00
virt:kvm_utils security update
2022-02-25 00:00:00
rocky
rocky
virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2021-11-09 08:35:34