CVE-2019-14378
Description
ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
9.069
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| qemu security update(DSA-4506-1) qemu_2.8+dfsg-6+deb9u8_i386.deb | Linux |
| qemu security update(DSA-4506-1) qemu_2.8+dfsg-6+deb9u8_amd64.deb | Linux |
| qemu security update(DSA-4512-1) qemu_3.1+dfsg-8+deb10u2_amd64.deb | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-curl-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-curl-debuginfo-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-iscsi-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-iscsi-debuginfo-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-rbd-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-rbd-debuginfo-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-ssh-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-block-ssh-debuginfo-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-debugsource-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-guest-agent-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-guest-agent-debuginfo-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-ipxe-1.0.0+-5.18.1.noarch.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-kvm-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-lang-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-seabios-1.11.0-5.18.1.noarch.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-sgabios-8-5.18.1.noarch.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-tools-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-tools-debuginfo-2.11.2-5.18.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-vgabios-1.11.0-5.18.1.noarch.rpm | Linux |
| SUSE-SU-2019:2353-1(SUSE Linux Enterprise Server 12-SP4 ) qemu-x86-2.11.2-5.18.1.x86_64.rpm | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_3.1+dfsg-2ubuntu3.6_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_3.1+dfsg-2ubuntu3.6_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_4.0+dfsg-0ubuntu9.1_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_4.0+dfsg-0ubuntu9.1_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_2.5+dfsg-5ubuntu10.42_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu_2.5+dfsg-5ubuntu10.42_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_3.1+dfsg-2ubuntu3.6_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_3.1+dfsg-2ubuntu3.6_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_4.0+dfsg-0ubuntu9.1_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_4.0+dfsg-0ubuntu9.1_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_2.5+dfsg-5ubuntu10.42_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system_2.5+dfsg-5ubuntu10.42_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_3.1+dfsg-2ubuntu3.6_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_3.1+dfsg-2ubuntu3.6_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_4.0+dfsg-0ubuntu9.1_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_4.0+dfsg-0ubuntu9.1_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_2.5+dfsg-5ubuntu10.42_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_2.5+dfsg-5ubuntu10.42_amd64.deb | Linux |
| (RHSA-2020:0775) qemu-kvm security update qemu-guest-agent-0.12.1.2-2.506.el6_10.6.i686.rpm | Linux |
| (RHSA-2020:0775) qemu-kvm security update qemu-guest-agent-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (RHSA-2020:0775) qemu-kvm security update qemu-img-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (RHSA-2020:0775) qemu-kvm security update qemu-kvm-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (RHSA-2020:0775) qemu-kvm security update qemu-kvm-tools-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (RHSA-2020:0889) slirp4netns security update slirp4netns-0.3.0-8.el7_7.x86_64.rpm | Linux |
| Oci-systemd-hook update (ELSA-2020-1926) oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+7621+b33f33e5.x86_64.rpm | Linux |
| Oci-umount update (ELSA-2020-1926) oci-umount-2.3.4-2.git87f9237.module+el8.2.0+7621+b33f33e5.x86_64.rpm | Linux |
| (CESA-2020:0775) qemu-kvm security update qemu-guest-agent-0.12.1.2-2.506.el6_10.6.i686.rpm | Linux |
| (CESA-2020:0775) qemu-kvm security update qemu-guest-agent-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (CESA-2020:0775) qemu-kvm security update qemu-img-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (CESA-2020:0775) qemu-kvm security update qemu-kvm-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (CESA-2020:0775) qemu-kvm security update qemu-kvm-tools-0.12.1.2-2.506.el6_10.6.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update buildah-debuginfo-1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update buildah-debugsource-1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update buildah-tests-debuginfo-1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update cockpit-podman-4-1.module+el8.1.0+4081+b29780af.noarch.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update container-selinux-2.107-2.module+el8.1.0+4081+b29780af.noarch.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update containernetworking-plugins-debuginfo-0.8.1-2.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update containernetworking-plugins-debugsource-0.8.1-2.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update fuse-overlayfs-debuginfo-0.4.1-1.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update fuse-overlayfs-debugsource-0.4.1-1.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update oci-systemd-hook-debuginfo-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update oci-systemd-hook-debugsource-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update oci-umount-debuginfo-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update oci-umount-debugsource-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-1.4.2-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-debuginfo-1.4.2-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-debugsource-1.4.2-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8.noarch.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8.noarch.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-remote-debuginfo-1.4.2-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update runc-debuginfo-1.0.0-60.rc8.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update runc-debugsource-1.0.0-60.rc8.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update skopeo-debuginfo-0.1.37-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update skopeo-debugsource-0.1.37-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update slirp4netns-debuginfo-0.3.0-4.module+el8.1.0+4306+1d917805.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update slirp4netns-debugsource-0.3.0-4.module+el8.1.0+4306+1d917805.x86_64.rpm | Linux |
| (RHSA-2019:3403)Important: security, bug fix, and enhancement update toolbox-0.0.4-1.module+el8.1.0+4081+b29780af.x86_64.rpm | Linux |
| (RHSA-2020:0889)Important: security update slirp4netns-debuginfo-0.3.0-8.el7_7.x86_64.rpm | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-kvm_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-kvm_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-utils_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-utils_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user-static_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-user-static_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system-common_2.11+dfsg-1ubuntu7.20_i386.deb | Linux |
| Machine emulator and virtualizer (USN-4191-1) qemu-system-common_2.11+dfsg-1ubuntu7.20_amd64.deb | Linux |
| Oci-systemd-hook update (ELSA-2019-4269) oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+5440+994fc847.x86_64.rpm | Linux |
| Oci-umount update (ELSA-2019-4269) oci-umount-2.3.4-2.git87f9237.module+el8.1.0+5440+994fc847.x86_64.rpm | Linux |
| Buildah update (ELSA-2021-0705) buildah-1.5-8.gite94b4f9.0.1.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Container-selinux update (ELSA-2021-0705) container-selinux-2.124.0-1.gitf958d0c.module+el8.3.0+9668+293abd4d.noarch.rpm | Linux |
| Containernetworking-plugins update (ELSA-2021-0705) containernetworking-plugins-0.7.4-4.git9ebe139.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Containers-common update (ELSA-2021-0705) containers-common-0.1.32-6.git1715c90.0.1.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Crit update (ELSA-2021-0705) crit-3.12-9.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Criu update (ELSA-2021-0705) criu-3.12-9.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Fuse-overlayfs update (ELSA-2021-0705) fuse-overlayfs-0.3-5.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Oci-systemd-hook update (ELSA-2021-0705) oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Oci-umount update (ELSA-2021-0705) oci-umount-2.3.4-2.git87f9237.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Podman update (ELSA-2021-0705) podman-1.0.0-8.git921f98f.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Podman-docker update (ELSA-2021-0705) podman-docker-1.0.0-8.git921f98f.module+el8.3.0+9668+293abd4d.noarch.rpm | Linux |
| Python3-criu update (ELSA-2021-0705) python3-criu-3.12-9.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Runc update (ELSA-2021-0705) runc-1.0.0-56.rc5.dev.git2abd837.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Skopeo update (ELSA-2021-0705) skopeo-0.1.32-6.git1715c90.0.1.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Slirp4netns update (ELSA-2021-0705) slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.3.0+9668+293abd4d.x86_64.rpm | Linux |
| Out-of-bounds Write Vulnerability (CVE-2019-14378) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234