| Release | Version |
|---|---|
| buster | 0.2.3-1 |
| bullseye | 1.0.1-1 |
| sid | 1.0.1-1 |
| Bug | buster | bullseye | sid | Description |
|---|---|---|---|---|
| CVE-2020-8608 | vulnerable (no DSA) | fixed | fixed | In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf ... |
| CVE-2020-1983 | vulnerable (no DSA) | fixed | fixed | A use after free vulnerability in ip_reass() in ip_input.c of libslirp ... |
| CVE-2020-10756 | vulnerable (no DSA) | fixed | fixed | An out-of-bounds read vulnerability was found in the SLiRP networking ... |
| CVE-2019-15890 | vulnerable (no DSA) | fixed | fixed | libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reas ... |
| Bug | Description |
|---|---|
| CVE-2019-9824 | tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 u ... |
| CVE-2019-6778 | In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer ove ... |
| CVE-2019-14378 | ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overf ... |