exploitDog

SUSE-SU-2020:1197-1

Опубликовано: 06 мая 2020

Источник: suse-cvrf

Описание

Security update for slirp4netns

This update for slirp4netns fixes the following issues:

Security issue fixed:

CVE-2020-1983: Fixed a use-after-free in ip_reass (bsc#1170940).

Список пакетов

SUSE Linux Enterprise Module for Containers 15 SP1

slirp4netns-0.4.5-3.9.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20201197-1/
Link for SUSE-SU-2020:1197-1
https://lists.suse.com/pipermail/sle-security-updates/2020-May/006785.html
E-Mail link for SUSE-SU-2020:1197-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1170940
SUSE Bug 1170940
https://www.suse.com/security/cve/CVE-2020-1983/
SUSE CVE CVE-2020-1983 page

Описание

A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service.

Затронутые продукты

SUSE Linux Enterprise Module for Containers 15 SP1:slirp4netns-0.4.5-3.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-1983.html
CVE-2020-1983
https://bugzilla.suse.com/1170940
SUSE Bug 1170940