Action not permitted
Modal body text goes here.
Modal Title
Modal Body
usn-5009-1
Vulnerability from osv_ubuntu
Qiuhao Li discovered that libslirp incorrectly handled certain header data lengths. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. This issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. (CVE-2020-29129, CVE-2020-29130)
It was discovered that libslirp incorrectly handled certain udp packets. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. (CVE-2021-3592, CVE-2021-3593, CVE-2021-3594, CVE-2021-3595)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2020-29129",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2020-29130",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2021-3592",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2021-3593",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2021-3594",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2021-3595",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:20.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.1.0-2ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.1.0-2ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.1.0-2ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.0.0-1",
"4.0.0-2",
"4.1.0-1",
"4.1.0-2",
"4.1.0-2ubuntu1",
"4.1.0-2ubuntu2",
"4.1.0-2ubuntu2.1"
]
}
],
"aliases": [],
"details": "Qiuhao Li discovered that libslirp incorrectly handled certain header data\nlengths. An attacker inside a guest could possibly use this issue to leak\nsensitive information from the host. This issue only affected Ubuntu 20.04\nLTS and Ubuntu 20.10. (CVE-2020-29129, CVE-2020-29130)\n\nIt was discovered that libslirp incorrectly handled certain udp packets. An\nattacker inside a guest could possibly use this issue to leak sensitive\ninformation from the host. (CVE-2021-3592, CVE-2021-3593, CVE-2021-3594,\nCVE-2021-3595)\n",
"id": "USN-5009-1",
"modified": "2026-04-27T14:11:27Z",
"published": "2021-07-15T17:23:21Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-29129"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-29130"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3592"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3593"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3594"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3595"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "libslirp vulnerabilities",
"upstream": [
"UBUNTU-CVE-2020-29129",
"UBUNTU-CVE-2020-29130",
"UBUNTU-CVE-2021-3592",
"UBUNTU-CVE-2021-3593",
"UBUNTU-CVE-2021-3594",
"UBUNTU-CVE-2021-3595"
]
}
ubuntu-cve-2020-29129
Vulnerability from osv_ubuntu
ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.1.0-2ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.1.0-2ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.1.0-2ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.0.0-1",
"4.0.0-2",
"4.1.0-1",
"4.1.0-2",
"4.1.0-2ubuntu1",
"4.1.0-2ubuntu2",
"4.1.0-2ubuntu2.1"
]
}
],
"aliases": [],
"details": "ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.",
"id": "UBUNTU-CVE-2020-29129",
"modified": "2026-04-22T07:39:38Z",
"published": "2020-11-26T20:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-29129"
},
{
"type": "REPORT",
"url": "https://lists.freedesktop.org/archives/slirp/2020-November/000115.html"
},
{
"type": "REPORT",
"url": "http://www.openwall.com/lists/oss-security/2020/11/27/1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29129"
}
],
"related": [
"USN-5009-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2020-29129"
]
}
ubuntu-cve-2020-29130
Vulnerability from osv_ubuntu
slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.1.0-2ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.1.0-2ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.1.0-2ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.0.0-1",
"4.0.0-2",
"4.1.0-1",
"4.1.0-2",
"4.1.0-2ubuntu1",
"4.1.0-2ubuntu2",
"4.1.0-2ubuntu2.1"
]
}
],
"aliases": [],
"details": "slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.",
"id": "UBUNTU-CVE-2020-29130",
"modified": "2026-04-22T07:39:38Z",
"published": "2020-11-26T20:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-29130"
},
{
"type": "REPORT",
"url": "https://lists.freedesktop.org/archives/slirp/2020-November/000115.html"
},
{
"type": "REPORT",
"url": "http://www.openwall.com/lists/oss-security/2020/11/27/1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29130"
}
],
"related": [
"USN-5009-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2020-29130"
]
}
ubuntu-cve-2021-3592
Vulnerability from osv_ubuntu
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the bootp_input() function and could occur while processing a udp packet that is smaller than the size of the 'bootp_t' structure. A malicious guest could use this flaw to leak 10 bytes of uninitialized heap memory from the host. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.
| URL | Type | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-common",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-keymaps",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-kvm",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-aarch64",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-common",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-user",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-user-static",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-utils",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@2.0.0+dfsg-2ubuntu1.47+esm4?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.0+dfsg-2ubuntu1.47+esm4"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.5.0+dfsg-3ubuntu5",
"1.5.0+dfsg-3ubuntu6",
"1.6.0+dfsg-2ubuntu1",
"1.6.0+dfsg-2ubuntu2",
"1.6.0+dfsg-2ubuntu3",
"1.6.0+dfsg-2ubuntu4",
"1.7.0+dfsg-2ubuntu1",
"1.7.0+dfsg-2ubuntu2",
"1.7.0+dfsg-2ubuntu3",
"1.7.0+dfsg-2ubuntu4",
"1.7.0+dfsg-2ubuntu5",
"1.7.0+dfsg-2ubuntu7",
"1.7.0+dfsg-2ubuntu8",
"1.7.0+dfsg-2ubuntu9",
"1.7.0+dfsg-3ubuntu1~ppa1",
"1.7.0+dfsg-3ubuntu1",
"1.7.0+dfsg-3ubuntu2",
"1.7.0+dfsg-3ubuntu3",
"1.7.0+dfsg-3ubuntu4",
"1.7.0+dfsg-3ubuntu5",
"1.7.0+dfsg-3ubuntu6",
"1.7.0+dfsg-3ubuntu7",
"2.0.0~rc1+dfsg-0ubuntu1",
"2.0.0~rc1+dfsg-0ubuntu2",
"2.0.0~rc1+dfsg-0ubuntu3",
"2.0.0~rc1+dfsg-0ubuntu3.1",
"2.0.0+dfsg-2ubuntu1",
"2.0.0+dfsg-2ubuntu1.1",
"2.0.0+dfsg-2ubuntu1.2",
"2.0.0+dfsg-2ubuntu1.3",
"2.0.0+dfsg-2ubuntu1.5",
"2.0.0+dfsg-2ubuntu1.6",
"2.0.0+dfsg-2ubuntu1.7",
"2.0.0+dfsg-2ubuntu1.8",
"2.0.0+dfsg-2ubuntu1.9",
"2.0.0+dfsg-2ubuntu1.10",
"2.0.0+dfsg-2ubuntu1.11",
"2.0.0+dfsg-2ubuntu1.13",
"2.0.0+dfsg-2ubuntu1.14",
"2.0.0+dfsg-2ubuntu1.15",
"2.0.0+dfsg-2ubuntu1.16",
"2.0.0+dfsg-2ubuntu1.17",
"2.0.0+dfsg-2ubuntu1.18",
"2.0.0+dfsg-2ubuntu1.19",
"2.0.0+dfsg-2ubuntu1.20",
"2.0.0+dfsg-2ubuntu1.21",
"2.0.0+dfsg-2ubuntu1.22",
"2.0.0+dfsg-2ubuntu1.24",
"2.0.0+dfsg-2ubuntu1.25",
"2.0.0+dfsg-2ubuntu1.26",
"2.0.0+dfsg-2ubuntu1.27",
"2.0.0+dfsg-2ubuntu1.28",
"2.0.0+dfsg-2ubuntu1.29",
"2.0.0+dfsg-2ubuntu1.30",
"2.0.0+dfsg-2ubuntu1.31",
"2.0.0+dfsg-2ubuntu1.32",
"2.0.0+dfsg-2ubuntu1.33",
"2.0.0+dfsg-2ubuntu1.34",
"2.0.0+dfsg-2ubuntu1.35",
"2.0.0+dfsg-2ubuntu1.36",
"2.0.0+dfsg-2ubuntu1.38",
"2.0.0+dfsg-2ubuntu1.39",
"2.0.0+dfsg-2ubuntu1.40",
"2.0.0+dfsg-2ubuntu1.41",
"2.0.0+dfsg-2ubuntu1.42",
"2.0.0+dfsg-2ubuntu1.43",
"2.0.0+dfsg-2ubuntu1.44",
"2.0.0+dfsg-2ubuntu1.45",
"2.0.0+dfsg-2ubuntu1.46",
"2.0.0+dfsg-2ubuntu1.47",
"2.0.0+dfsg-2ubuntu1.47+esm1",
"2.0.0+dfsg-2ubuntu1.47+esm2",
"2.0.0+dfsg-2ubuntu1.47+esm3"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-aarch64",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.5+dfsg-5ubuntu10.51+esm3?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.5+dfsg-5ubuntu10.51+esm3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.3+dfsg-5ubuntu9",
"1:2.3+dfsg-5ubuntu10",
"1:2.4+dfsg-4ubuntu1",
"1:2.4+dfsg-4ubuntu2",
"1:2.4+dfsg-4ubuntu3",
"1:2.4+dfsg-5ubuntu3",
"1:2.5+dfsg-1ubuntu2",
"1:2.5+dfsg-1ubuntu3",
"1:2.5+dfsg-1ubuntu4",
"1:2.5+dfsg-1ubuntu5",
"1:2.5+dfsg-5ubuntu1",
"1:2.5+dfsg-5ubuntu2",
"1:2.5+dfsg-5ubuntu4",
"1:2.5+dfsg-5ubuntu6",
"1:2.5+dfsg-5ubuntu7",
"1:2.5+dfsg-5ubuntu10",
"1:2.5+dfsg-5ubuntu10.1",
"1:2.5+dfsg-5ubuntu10.2",
"1:2.5+dfsg-5ubuntu10.3",
"1:2.5+dfsg-5ubuntu10.4",
"1:2.5+dfsg-5ubuntu10.5",
"1:2.5+dfsg-5ubuntu10.6",
"1:2.5+dfsg-5ubuntu10.7",
"1:2.5+dfsg-5ubuntu10.8",
"1:2.5+dfsg-5ubuntu10.9",
"1:2.5+dfsg-5ubuntu10.10",
"1:2.5+dfsg-5ubuntu10.11",
"1:2.5+dfsg-5ubuntu10.13",
"1:2.5+dfsg-5ubuntu10.14",
"1:2.5+dfsg-5ubuntu10.15",
"1:2.5+dfsg-5ubuntu10.16",
"1:2.5+dfsg-5ubuntu10.20",
"1:2.5+dfsg-5ubuntu10.21",
"1:2.5+dfsg-5ubuntu10.22",
"1:2.5+dfsg-5ubuntu10.24",
"1:2.5+dfsg-5ubuntu10.25",
"1:2.5+dfsg-5ubuntu10.26",
"1:2.5+dfsg-5ubuntu10.28",
"1:2.5+dfsg-5ubuntu10.29",
"1:2.5+dfsg-5ubuntu10.30",
"1:2.5+dfsg-5ubuntu10.31",
"1:2.5+dfsg-5ubuntu10.32",
"1:2.5+dfsg-5ubuntu10.33",
"1:2.5+dfsg-5ubuntu10.34",
"1:2.5+dfsg-5ubuntu10.35",
"1:2.5+dfsg-5ubuntu10.36",
"1:2.5+dfsg-5ubuntu10.37",
"1:2.5+dfsg-5ubuntu10.38",
"1:2.5+dfsg-5ubuntu10.39",
"1:2.5+dfsg-5ubuntu10.40",
"1:2.5+dfsg-5ubuntu10.41",
"1:2.5+dfsg-5ubuntu10.42",
"1:2.5+dfsg-5ubuntu10.43",
"1:2.5+dfsg-5ubuntu10.44",
"1:2.5+dfsg-5ubuntu10.45",
"1:2.5+dfsg-5ubuntu10.46",
"1:2.5+dfsg-5ubuntu10.47",
"1:2.5+dfsg-5ubuntu10.48",
"1:2.5+dfsg-5ubuntu10.49",
"1:2.5+dfsg-5ubuntu10.51",
"1:2.5+dfsg-5ubuntu10.51+esm1",
"1:2.5+dfsg-5ubuntu10.51+esm2"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.11+dfsg-1ubuntu7.37?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.11+dfsg-1ubuntu7.37"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.10+dfsg-0ubuntu3",
"1:2.10+dfsg-0ubuntu4",
"1:2.10+dfsg-0ubuntu5",
"1:2.11+dfsg-1ubuntu1",
"1:2.11+dfsg-1ubuntu2",
"1:2.11+dfsg-1ubuntu4",
"1:2.11+dfsg-1ubuntu5",
"1:2.11+dfsg-1ubuntu6",
"1:2.11+dfsg-1ubuntu7",
"1:2.11+dfsg-1ubuntu7.1",
"1:2.11+dfsg-1ubuntu7.2",
"1:2.11+dfsg-1ubuntu7.3",
"1:2.11+dfsg-1ubuntu7.4",
"1:2.11+dfsg-1ubuntu7.5",
"1:2.11+dfsg-1ubuntu7.6",
"1:2.11+dfsg-1ubuntu7.7",
"1:2.11+dfsg-1ubuntu7.8",
"1:2.11+dfsg-1ubuntu7.9",
"1:2.11+dfsg-1ubuntu7.10",
"1:2.11+dfsg-1ubuntu7.12",
"1:2.11+dfsg-1ubuntu7.13",
"1:2.11+dfsg-1ubuntu7.14",
"1:2.11+dfsg-1ubuntu7.15",
"1:2.11+dfsg-1ubuntu7.17",
"1:2.11+dfsg-1ubuntu7.18",
"1:2.11+dfsg-1ubuntu7.19",
"1:2.11+dfsg-1ubuntu7.20",
"1:2.11+dfsg-1ubuntu7.21",
"1:2.11+dfsg-1ubuntu7.22",
"1:2.11+dfsg-1ubuntu7.23",
"1:2.11+dfsg-1ubuntu7.25",
"1:2.11+dfsg-1ubuntu7.26",
"1:2.11+dfsg-1ubuntu7.27",
"1:2.11+dfsg-1ubuntu7.28",
"1:2.11+dfsg-1ubuntu7.29",
"1:2.11+dfsg-1ubuntu7.31",
"1:2.11+dfsg-1ubuntu7.32",
"1:2.11+dfsg-1ubuntu7.33",
"1:2.11+dfsg-1ubuntu7.34",
"1:2.11+dfsg-1ubuntu7.35",
"1:2.11+dfsg-1ubuntu7.36"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.1.0-2ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.1.0-2ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.1.0-2ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.0.0-1",
"4.0.0-2",
"4.1.0-1",
"4.1.0-2",
"4.1.0-2ubuntu1",
"4.1.0-2ubuntu2",
"4.1.0-2ubuntu2.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.6.1-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.6.1-1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.6.1-1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.4.0-1build1"
]
}
],
"aliases": [],
"details": "An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the bootp_input() function and could occur while processing a udp packet that is smaller than the size of the \u0027bootp_t\u0027 structure. A malicious guest could use this flaw to leak 10 bytes of uninitialized heap memory from the host. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.",
"id": "UBUNTU-CVE-2021-3592",
"modified": "2026-04-22T07:39:47Z",
"published": "2021-06-15T21:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3592"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5010-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-2"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3592"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7094-1"
}
],
"related": [
"USN-5009-1",
"USN-5010-1",
"USN-5009-2",
"USN-7094-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2021-3592"
]
}
ubuntu-cve-2021-3593
Vulnerability from osv_ubuntu
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp6_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.11+dfsg-1ubuntu7.37?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.11+dfsg-1ubuntu7.37"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.10+dfsg-0ubuntu3",
"1:2.10+dfsg-0ubuntu4",
"1:2.10+dfsg-0ubuntu5",
"1:2.11+dfsg-1ubuntu1",
"1:2.11+dfsg-1ubuntu2",
"1:2.11+dfsg-1ubuntu4",
"1:2.11+dfsg-1ubuntu5",
"1:2.11+dfsg-1ubuntu6",
"1:2.11+dfsg-1ubuntu7",
"1:2.11+dfsg-1ubuntu7.1",
"1:2.11+dfsg-1ubuntu7.2",
"1:2.11+dfsg-1ubuntu7.3",
"1:2.11+dfsg-1ubuntu7.4",
"1:2.11+dfsg-1ubuntu7.5",
"1:2.11+dfsg-1ubuntu7.6",
"1:2.11+dfsg-1ubuntu7.7",
"1:2.11+dfsg-1ubuntu7.8",
"1:2.11+dfsg-1ubuntu7.9",
"1:2.11+dfsg-1ubuntu7.10",
"1:2.11+dfsg-1ubuntu7.12",
"1:2.11+dfsg-1ubuntu7.13",
"1:2.11+dfsg-1ubuntu7.14",
"1:2.11+dfsg-1ubuntu7.15",
"1:2.11+dfsg-1ubuntu7.17",
"1:2.11+dfsg-1ubuntu7.18",
"1:2.11+dfsg-1ubuntu7.19",
"1:2.11+dfsg-1ubuntu7.20",
"1:2.11+dfsg-1ubuntu7.21",
"1:2.11+dfsg-1ubuntu7.22",
"1:2.11+dfsg-1ubuntu7.23",
"1:2.11+dfsg-1ubuntu7.25",
"1:2.11+dfsg-1ubuntu7.26",
"1:2.11+dfsg-1ubuntu7.27",
"1:2.11+dfsg-1ubuntu7.28",
"1:2.11+dfsg-1ubuntu7.29",
"1:2.11+dfsg-1ubuntu7.31",
"1:2.11+dfsg-1ubuntu7.32",
"1:2.11+dfsg-1ubuntu7.33",
"1:2.11+dfsg-1ubuntu7.34",
"1:2.11+dfsg-1ubuntu7.35",
"1:2.11+dfsg-1ubuntu7.36"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.1.0-2ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.1.0-2ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.1.0-2ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.0.0-1",
"4.0.0-2",
"4.1.0-1",
"4.1.0-2",
"4.1.0-2ubuntu1",
"4.1.0-2ubuntu2",
"4.1.0-2ubuntu2.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.6.1-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.6.1-1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.6.1-1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.4.0-1build1"
]
}
],
"aliases": [],
"details": "An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp6_input() function and could occur while processing a udp packet that is smaller than the size of the \u0027udphdr\u0027 structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.",
"id": "UBUNTU-CVE-2021-3593",
"modified": "2026-06-02T19:34:55Z",
"published": "2021-06-15T21:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3593"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5010-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-2"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3593"
}
],
"related": [
"USN-5009-1",
"USN-5010-1",
"USN-5009-2"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2021-3593"
]
}
ubuntu-cve-2021-3594
Vulnerability from osv_ubuntu
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.
| URL | Type | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-common",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-keymaps",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-kvm",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-aarch64",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-common",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-user",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-user-static",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
},
{
"binary_name": "qemu-utils",
"binary_version": "2.0.0+dfsg-2ubuntu1.47+esm4"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@2.0.0+dfsg-2ubuntu1.47+esm4?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.0+dfsg-2ubuntu1.47+esm4"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.5.0+dfsg-3ubuntu5",
"1.5.0+dfsg-3ubuntu6",
"1.6.0+dfsg-2ubuntu1",
"1.6.0+dfsg-2ubuntu2",
"1.6.0+dfsg-2ubuntu3",
"1.6.0+dfsg-2ubuntu4",
"1.7.0+dfsg-2ubuntu1",
"1.7.0+dfsg-2ubuntu2",
"1.7.0+dfsg-2ubuntu3",
"1.7.0+dfsg-2ubuntu4",
"1.7.0+dfsg-2ubuntu5",
"1.7.0+dfsg-2ubuntu7",
"1.7.0+dfsg-2ubuntu8",
"1.7.0+dfsg-2ubuntu9",
"1.7.0+dfsg-3ubuntu1~ppa1",
"1.7.0+dfsg-3ubuntu1",
"1.7.0+dfsg-3ubuntu2",
"1.7.0+dfsg-3ubuntu3",
"1.7.0+dfsg-3ubuntu4",
"1.7.0+dfsg-3ubuntu5",
"1.7.0+dfsg-3ubuntu6",
"1.7.0+dfsg-3ubuntu7",
"2.0.0~rc1+dfsg-0ubuntu1",
"2.0.0~rc1+dfsg-0ubuntu2",
"2.0.0~rc1+dfsg-0ubuntu3",
"2.0.0~rc1+dfsg-0ubuntu3.1",
"2.0.0+dfsg-2ubuntu1",
"2.0.0+dfsg-2ubuntu1.1",
"2.0.0+dfsg-2ubuntu1.2",
"2.0.0+dfsg-2ubuntu1.3",
"2.0.0+dfsg-2ubuntu1.5",
"2.0.0+dfsg-2ubuntu1.6",
"2.0.0+dfsg-2ubuntu1.7",
"2.0.0+dfsg-2ubuntu1.8",
"2.0.0+dfsg-2ubuntu1.9",
"2.0.0+dfsg-2ubuntu1.10",
"2.0.0+dfsg-2ubuntu1.11",
"2.0.0+dfsg-2ubuntu1.13",
"2.0.0+dfsg-2ubuntu1.14",
"2.0.0+dfsg-2ubuntu1.15",
"2.0.0+dfsg-2ubuntu1.16",
"2.0.0+dfsg-2ubuntu1.17",
"2.0.0+dfsg-2ubuntu1.18",
"2.0.0+dfsg-2ubuntu1.19",
"2.0.0+dfsg-2ubuntu1.20",
"2.0.0+dfsg-2ubuntu1.21",
"2.0.0+dfsg-2ubuntu1.22",
"2.0.0+dfsg-2ubuntu1.24",
"2.0.0+dfsg-2ubuntu1.25",
"2.0.0+dfsg-2ubuntu1.26",
"2.0.0+dfsg-2ubuntu1.27",
"2.0.0+dfsg-2ubuntu1.28",
"2.0.0+dfsg-2ubuntu1.29",
"2.0.0+dfsg-2ubuntu1.30",
"2.0.0+dfsg-2ubuntu1.31",
"2.0.0+dfsg-2ubuntu1.32",
"2.0.0+dfsg-2ubuntu1.33",
"2.0.0+dfsg-2ubuntu1.34",
"2.0.0+dfsg-2ubuntu1.35",
"2.0.0+dfsg-2ubuntu1.36",
"2.0.0+dfsg-2ubuntu1.38",
"2.0.0+dfsg-2ubuntu1.39",
"2.0.0+dfsg-2ubuntu1.40",
"2.0.0+dfsg-2ubuntu1.41",
"2.0.0+dfsg-2ubuntu1.42",
"2.0.0+dfsg-2ubuntu1.43",
"2.0.0+dfsg-2ubuntu1.44",
"2.0.0+dfsg-2ubuntu1.45",
"2.0.0+dfsg-2ubuntu1.46",
"2.0.0+dfsg-2ubuntu1.47",
"2.0.0+dfsg-2ubuntu1.47+esm1",
"2.0.0+dfsg-2ubuntu1.47+esm2",
"2.0.0+dfsg-2ubuntu1.47+esm3"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-aarch64",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.5+dfsg-5ubuntu10.51+esm3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.5+dfsg-5ubuntu10.51+esm3?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.5+dfsg-5ubuntu10.51+esm3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.3+dfsg-5ubuntu9",
"1:2.3+dfsg-5ubuntu10",
"1:2.4+dfsg-4ubuntu1",
"1:2.4+dfsg-4ubuntu2",
"1:2.4+dfsg-4ubuntu3",
"1:2.4+dfsg-5ubuntu3",
"1:2.5+dfsg-1ubuntu2",
"1:2.5+dfsg-1ubuntu3",
"1:2.5+dfsg-1ubuntu4",
"1:2.5+dfsg-1ubuntu5",
"1:2.5+dfsg-5ubuntu1",
"1:2.5+dfsg-5ubuntu2",
"1:2.5+dfsg-5ubuntu4",
"1:2.5+dfsg-5ubuntu6",
"1:2.5+dfsg-5ubuntu7",
"1:2.5+dfsg-5ubuntu10",
"1:2.5+dfsg-5ubuntu10.1",
"1:2.5+dfsg-5ubuntu10.2",
"1:2.5+dfsg-5ubuntu10.3",
"1:2.5+dfsg-5ubuntu10.4",
"1:2.5+dfsg-5ubuntu10.5",
"1:2.5+dfsg-5ubuntu10.6",
"1:2.5+dfsg-5ubuntu10.7",
"1:2.5+dfsg-5ubuntu10.8",
"1:2.5+dfsg-5ubuntu10.9",
"1:2.5+dfsg-5ubuntu10.10",
"1:2.5+dfsg-5ubuntu10.11",
"1:2.5+dfsg-5ubuntu10.13",
"1:2.5+dfsg-5ubuntu10.14",
"1:2.5+dfsg-5ubuntu10.15",
"1:2.5+dfsg-5ubuntu10.16",
"1:2.5+dfsg-5ubuntu10.20",
"1:2.5+dfsg-5ubuntu10.21",
"1:2.5+dfsg-5ubuntu10.22",
"1:2.5+dfsg-5ubuntu10.24",
"1:2.5+dfsg-5ubuntu10.25",
"1:2.5+dfsg-5ubuntu10.26",
"1:2.5+dfsg-5ubuntu10.28",
"1:2.5+dfsg-5ubuntu10.29",
"1:2.5+dfsg-5ubuntu10.30",
"1:2.5+dfsg-5ubuntu10.31",
"1:2.5+dfsg-5ubuntu10.32",
"1:2.5+dfsg-5ubuntu10.33",
"1:2.5+dfsg-5ubuntu10.34",
"1:2.5+dfsg-5ubuntu10.35",
"1:2.5+dfsg-5ubuntu10.36",
"1:2.5+dfsg-5ubuntu10.37",
"1:2.5+dfsg-5ubuntu10.38",
"1:2.5+dfsg-5ubuntu10.39",
"1:2.5+dfsg-5ubuntu10.40",
"1:2.5+dfsg-5ubuntu10.41",
"1:2.5+dfsg-5ubuntu10.42",
"1:2.5+dfsg-5ubuntu10.43",
"1:2.5+dfsg-5ubuntu10.44",
"1:2.5+dfsg-5ubuntu10.45",
"1:2.5+dfsg-5ubuntu10.46",
"1:2.5+dfsg-5ubuntu10.47",
"1:2.5+dfsg-5ubuntu10.48",
"1:2.5+dfsg-5ubuntu10.49",
"1:2.5+dfsg-5ubuntu10.51",
"1:2.5+dfsg-5ubuntu10.51+esm1",
"1:2.5+dfsg-5ubuntu10.51+esm2"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.11+dfsg-1ubuntu7.37?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.11+dfsg-1ubuntu7.37"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.10+dfsg-0ubuntu3",
"1:2.10+dfsg-0ubuntu4",
"1:2.10+dfsg-0ubuntu5",
"1:2.11+dfsg-1ubuntu1",
"1:2.11+dfsg-1ubuntu2",
"1:2.11+dfsg-1ubuntu4",
"1:2.11+dfsg-1ubuntu5",
"1:2.11+dfsg-1ubuntu6",
"1:2.11+dfsg-1ubuntu7",
"1:2.11+dfsg-1ubuntu7.1",
"1:2.11+dfsg-1ubuntu7.2",
"1:2.11+dfsg-1ubuntu7.3",
"1:2.11+dfsg-1ubuntu7.4",
"1:2.11+dfsg-1ubuntu7.5",
"1:2.11+dfsg-1ubuntu7.6",
"1:2.11+dfsg-1ubuntu7.7",
"1:2.11+dfsg-1ubuntu7.8",
"1:2.11+dfsg-1ubuntu7.9",
"1:2.11+dfsg-1ubuntu7.10",
"1:2.11+dfsg-1ubuntu7.12",
"1:2.11+dfsg-1ubuntu7.13",
"1:2.11+dfsg-1ubuntu7.14",
"1:2.11+dfsg-1ubuntu7.15",
"1:2.11+dfsg-1ubuntu7.17",
"1:2.11+dfsg-1ubuntu7.18",
"1:2.11+dfsg-1ubuntu7.19",
"1:2.11+dfsg-1ubuntu7.20",
"1:2.11+dfsg-1ubuntu7.21",
"1:2.11+dfsg-1ubuntu7.22",
"1:2.11+dfsg-1ubuntu7.23",
"1:2.11+dfsg-1ubuntu7.25",
"1:2.11+dfsg-1ubuntu7.26",
"1:2.11+dfsg-1ubuntu7.27",
"1:2.11+dfsg-1ubuntu7.28",
"1:2.11+dfsg-1ubuntu7.29",
"1:2.11+dfsg-1ubuntu7.31",
"1:2.11+dfsg-1ubuntu7.32",
"1:2.11+dfsg-1ubuntu7.33",
"1:2.11+dfsg-1ubuntu7.34",
"1:2.11+dfsg-1ubuntu7.35",
"1:2.11+dfsg-1ubuntu7.36"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.1.0-2ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.1.0-2ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.1.0-2ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.0.0-1",
"4.0.0-2",
"4.1.0-1",
"4.1.0-2",
"4.1.0-2ubuntu1",
"4.1.0-2ubuntu2",
"4.1.0-2ubuntu2.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.6.1-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.6.1-1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.6.1-1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.4.0-1build1"
]
}
],
"aliases": [],
"details": "An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp_input() function and could occur while processing a udp packet that is smaller than the size of the \u0027udphdr\u0027 structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.",
"id": "UBUNTU-CVE-2021-3594",
"modified": "2026-04-22T07:39:47Z",
"published": "2021-06-15T21:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3594"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5010-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-2"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3594"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7094-1"
}
],
"related": [
"USN-5009-1",
"USN-5010-1",
"USN-5009-2",
"USN-7094-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2021-3594"
]
}
ubuntu-cve-2021-3595
Vulnerability from osv_ubuntu
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the size of the 'tftp_t' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "qemu",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-block-extra",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-guest-agent",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-kvm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-arm",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-common",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-mips",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-misc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-ppc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-s390x",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-sparc",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-system-x86",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-binfmt",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-user-static",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
},
{
"binary_name": "qemu-utils",
"binary_version": "1:2.11+dfsg-1ubuntu7.37"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "qemu",
"purl": "pkg:deb/ubuntu/qemu@1:2.11+dfsg-1ubuntu7.37?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:2.11+dfsg-1ubuntu7.37"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:2.10+dfsg-0ubuntu3",
"1:2.10+dfsg-0ubuntu4",
"1:2.10+dfsg-0ubuntu5",
"1:2.11+dfsg-1ubuntu1",
"1:2.11+dfsg-1ubuntu2",
"1:2.11+dfsg-1ubuntu4",
"1:2.11+dfsg-1ubuntu5",
"1:2.11+dfsg-1ubuntu6",
"1:2.11+dfsg-1ubuntu7",
"1:2.11+dfsg-1ubuntu7.1",
"1:2.11+dfsg-1ubuntu7.2",
"1:2.11+dfsg-1ubuntu7.3",
"1:2.11+dfsg-1ubuntu7.4",
"1:2.11+dfsg-1ubuntu7.5",
"1:2.11+dfsg-1ubuntu7.6",
"1:2.11+dfsg-1ubuntu7.7",
"1:2.11+dfsg-1ubuntu7.8",
"1:2.11+dfsg-1ubuntu7.9",
"1:2.11+dfsg-1ubuntu7.10",
"1:2.11+dfsg-1ubuntu7.12",
"1:2.11+dfsg-1ubuntu7.13",
"1:2.11+dfsg-1ubuntu7.14",
"1:2.11+dfsg-1ubuntu7.15",
"1:2.11+dfsg-1ubuntu7.17",
"1:2.11+dfsg-1ubuntu7.18",
"1:2.11+dfsg-1ubuntu7.19",
"1:2.11+dfsg-1ubuntu7.20",
"1:2.11+dfsg-1ubuntu7.21",
"1:2.11+dfsg-1ubuntu7.22",
"1:2.11+dfsg-1ubuntu7.23",
"1:2.11+dfsg-1ubuntu7.25",
"1:2.11+dfsg-1ubuntu7.26",
"1:2.11+dfsg-1ubuntu7.27",
"1:2.11+dfsg-1ubuntu7.28",
"1:2.11+dfsg-1ubuntu7.29",
"1:2.11+dfsg-1ubuntu7.31",
"1:2.11+dfsg-1ubuntu7.32",
"1:2.11+dfsg-1ubuntu7.33",
"1:2.11+dfsg-1ubuntu7.34",
"1:2.11+dfsg-1ubuntu7.35",
"1:2.11+dfsg-1ubuntu7.36"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.1.0-2ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.1.0-2ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.1.0-2ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.0.0-1",
"4.0.0-2",
"4.1.0-1",
"4.1.0-2",
"4.1.0-2ubuntu1",
"4.1.0-2ubuntu2",
"4.1.0-2ubuntu2.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libslirp0",
"binary_version": "4.6.1-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "libslirp",
"purl": "pkg:deb/ubuntu/libslirp@4.6.1-1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.6.1-1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.4.0-1build1"
]
}
],
"aliases": [],
"details": "An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the size of the \u0027tftp_t\u0027 structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest threat from this vulnerability is to data confidentiality. This flaw affects libslirp versions prior to 4.6.0.",
"id": "UBUNTU-CVE-2021-3595",
"modified": "2026-04-22T07:39:47Z",
"published": "2021-06-15T21:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2021-3595"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5010-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-5009-2"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3595"
}
],
"related": [
"USN-5009-1",
"USN-5010-1",
"USN-5009-2"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2021-3595"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.