#VU54309 Release of invalid pointer or reference in libslirp


Published: 2021-06-22

Vulnerability identifier: #VU54309

Vulnerability risk: Low

CVSSv3.1: 3.8 [CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-3593

CWE-ID: CWE-763

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
libslirp
Universal components / Libraries / Libraries used by multiple products

Vendor: Freedesktop.org

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to invalid pointer initialization within the udp6_input() function while processing UDP packets in the SLiRP networking implementation of QEMU. A malicious guest could use this vulnerability to read host memory.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

libslirp: 0.6.0 - 4.5.0


External links
http://bugzilla.redhat.com/show_bug.cgi?id=1970487


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability