RHSA-2020:0889HighCVSS 7.0
Red Hat Security Advisory: slirp4netns security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2019-14378 — QEMU: slirp: heap buffer overflow during packet reassembly CVE-2019-15890 — QEMU: Slirp: use-after-free during packet reassembly CVE-2020-7039 — QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() CVE-2020-8608 — QEMU: Slirp: potential OOB access due to unsafe snprintf() usages
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2020:0889
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1734745
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1749716
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1791551
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1798453
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0889.json