Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:1314-1

Опубликовано: 24 апр. 2022
Источник: suse-cvrf

Описание

Security update for libslirp

This update for libslirp fixes the following issues:

NOTE: this update was retracted, as the bootp fix was incorrect and breaks DHCP usage in qemu.

  • CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364).
  • CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367).
  • CVE-2021-3595: Fixed invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366).

Список пакетов

Container rancher/elemental-teal-iso/5.4:latest
libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal-rt/5.4:latest
libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal/5.4:latest
libslirp0-4.3.1-150300.3.3.1
SUSE Linux Enterprise Micro 5.1
libslirp0-4.3.1-150300.3.3.1
SUSE Linux Enterprise Module for Server Applications 15 SP3
libslirp-devel-4.3.1-150300.3.3.1
libslirp0-4.3.1-150300.3.3.1
openSUSE Leap 15.3
libslirp-devel-4.3.1-150300.3.3.1
libslirp0-4.3.1-150300.3.3.1

Ссылки

Описание

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the bootp_input() function and could occur while processing a udp packet that is smaller than the size of the 'bootp_t' structure. A malicious guest could use this flaw to leak 10 bytes of uninitialized heap memory from the host. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.

Затронутые продукты
Container rancher/elemental-teal-iso/5.4:latest:libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal-rt/5.4:latest:libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal/5.4:latest:libslirp0-4.3.1-150300.3.3.1
SUSE Linux Enterprise Micro 5.1:libslirp0-4.3.1-150300.3.3.1
Ссылки

Описание

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.

Затронутые продукты
Container rancher/elemental-teal-iso/5.4:latest:libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal-rt/5.4:latest:libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal/5.4:latest:libslirp0-4.3.1-150300.3.3.1
SUSE Linux Enterprise Micro 5.1:libslirp0-4.3.1-150300.3.3.1
Ссылки

Описание

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the size of the 'tftp_t' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.

Затронутые продукты
Container rancher/elemental-teal-iso/5.4:latest:libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal-rt/5.4:latest:libslirp0-4.3.1-150300.3.3.1
Container rancher/elemental-teal/5.4:latest:libslirp0-4.3.1-150300.3.3.1
SUSE Linux Enterprise Micro 5.1:libslirp0-4.3.1-150300.3.3.1
Ссылки