CVE-2020-1983

LOW

Description

A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service.

References

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00001.html

https://gitlab.freedesktop.org/slirp/libslirp/-/commit/9ac0371bb8c0a40f5d9f82a1c25129660e81df04

https://gitlab.freedesktop.org/slirp/libslirp/-/issues/20

https://lists.debian.org/debian-lts-announce/2020/06/msg00032.html

https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/HWFD4MWV3YWIHVHSA2F7FKOLJFL4PHOX/

https://lists.fedoraproject.org/archives/list/[email protected]/message/NKT2MTSINE4NUPG5L6BYH6N23NBNITOL/

https://usn.ubuntu.com/4372-1/

https://www.debian.org/security/2020/dsa-4665

Details

Source: MITRE

Published: 2020-04-22

Updated: 2020-07-26

Type: CWE-416

Risk Information

CVSS v2.0

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Impact Score: 4

Exploitability Score: 2

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:libslirp_project:libslirp:*:*:*:*:*:*:*:* versions up to 4.2.0 (inclusive)

Configuration 2

OR

cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

Tenable Plugins

View all (33 total)

IDNameProductFamilySeverity
147882RHEL 7 : qemu-kvm-rhev (RHSA-2021:0934)NessusRed Hat Local Security Checks
low
147700EulerOS : qemu (EulerOS-SA-2021-1667)NessusHuawei Local Security Checks
medium
147523EulerOS : qemu (EulerOS-SA-2021-1632)NessusHuawei Local Security Checks
medium
146316RHEL 7 : qemu-kvm-rhev (RHSA-2021:0459)NessusRed Hat Local Security Checks
low
146080RHEL 7 : qemu-kvm-ma (RHSA-2021:0346)NessusRed Hat Local Security Checks
low
146032CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2020:4676)NessusCentOS Local Security Checks
high
143069RHEL 7 : qemu-kvm (RHSA-2020:4079)NessusRed Hat Local Security Checks
medium
142974Amazon Linux AMI : qemu-img (ALAS-2020-1449)NessusAmazon Linux Local Security Checks
medium
142608CentOS 7 : qemu-kvm (CESA-2020:4079)NessusCentOS Local Security Checks
medium
142449RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2020:4676)NessusRed Hat Local Security Checks
high
141767Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20201001)NessusScientific Linux Local Security Checks
medium
141627RHEL 8 : virt:8.1 and virt-devel:8.1 (RHSA-2020:4290)NessusRed Hat Local Security Checks
medium
141313Oracle Linux 7 : qemu-kvm (ELSA-2020-4079)NessusOracle Linux Local Security Checks
medium
140317EulerOS Virtualization for ARM 64 3.0.2.0 : qemu-kvm (EulerOS-SA-2020-1947)NessusHuawei Local Security Checks
medium
140197Amazon Linux 2 : ivshmem-tools (ALAS-2020-1485)NessusAmazon Linux Local Security Checks
low
140017EulerOS Virtualization for ARM 64 3.0.6.0 : qemu-kvm (EulerOS-SA-2020-1914)NessusHuawei Local Security Checks
medium
139396Oracle Linux 8 : container-tools:ol8 (ELSA-2020-3053)NessusOracle Linux Local Security Checks
low
138911Debian DLA-2288-1 : qemu security updateNessusDebian Local Security Checks
medium
138804RHEL 8 : container-tools:rhel8 (RHSA-2020:3053)NessusRed Hat Local Security Checks
low
137887Debian DLA-2262-1 : qemu security updateNessusDebian Local Security Checks
medium
137586SUSE SLES12 Security Update : qemu (SUSE-SU-2020:1538-1)NessusSuSE Local Security Checks
medium
137581SUSE SLES12 Security Update : qemu (SUSE-SU-2020:1526-1)NessusSuSE Local Security Checks
medium
137579SUSE SLES15 Security Update : qemu (SUSE-SU-2020:1523-1)NessusSuSE Local Security Checks
medium
137578SUSE SLES12 Security Update : qemu (SUSE-SU-2020:1516-1)NessusSuSE Local Security Checks
low
137577SUSE SLES12 Security Update : qemu (SUSE-SU-2020:1514-1)NessusSuSE Local Security Checks
medium
137550SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2020:1502-1)NessusSuSE Local Security Checks
low
137549SUSE SLES12 Security Update : qemu (SUSE-SU-2020:1501-1)NessusSuSE Local Security Checks
medium
137131openSUSE Security Update : qemu (openSUSE-2020-756)NessusSuSE Local Security Checks
low
136803Ubuntu 16.04 LTS / 18.04 LTS / 19.10 / 20.04 : QEMU vulnerabilities (USN-4372-1)NessusUbuntu Local Security Checks
medium
136467SUSE SLES15 Security Update : slirp4netns (SUSE-SU-2020:1197-1)NessusSuSE Local Security Checks
low
136459openSUSE Security Update : slirp4netns (openSUSE-2020-636)NessusSuSE Local Security Checks
low
136432Fedora 31 : libslirp (2020-1608d52724)NessusFedora Local Security Checks
low
136069Debian DSA-4665-1 : qemu - security updateNessusDebian Local Security Checks
medium