Описание
tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | kvm | Will not fix | ||
| Red Hat Enterprise Linux 5 | xen | Not affected | ||
| Red Hat OpenStack Platform 8 (Liberty) | qemu-kvm-rhev | Fix deferred | ||
| Red Hat OpenStack Platform 9 (Mitaka) | qemu-kvm-rhev | Fix deferred | ||
| Red Hat Enterprise Linux 6 | qemu-kvm | Fixed | RHSA-2019:1650 | 02.07.2019 |
| Red Hat Enterprise Linux 7 | qemu-kvm | Fixed | RHSA-2019:2078 | 06.08.2019 |
| Red Hat Enterprise Linux 8 | virt-devel | Fixed | RHSA-2019:3345 | 05.11.2019 |
| Red Hat Enterprise Linux 8 | virt | Fixed | RHSA-2019:3345 | 05.11.2019 |
| Red Hat OpenStack Platform 10.0 (Newton) | qemu-kvm-rhev | Fixed | RHSA-2019:2425 | 09.08.2019 |
| Red Hat OpenStack Platform 13.0 (Queens) | qemu-kvm-rhev | Fixed | RHSA-2019:2425 | 09.08.2019 |
Показывать по
Дополнительная информация
Статус:
EPSS
2.8 Low
CVSS3
Связанные уязвимости
tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.
tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.
tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 u ...
tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.
ELSA-2019-2078: qemu-kvm security, bug fix, and enhancement update (LOW)
EPSS
2.8 Low
CVSS3