PublicDateAtUSN: 2020-04-22 20:15:00 UTC
Candidate: CVE-2020-1983
PublicDate: 2020-04-22 20:15:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983
 https://ubuntu.com/security/notices/USN-4372-1
Description:
 A use after free vulnerability in ip_reass() in ip_input.c of libslirp
 4.2.0 and prior releases allows crafted packets to cause a denial of
 service.
Ubuntu-Description: 
Notes: 
Mitigation: 
Bugs: 
Priority: medium
Discovered-by: Aviv Sasson
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H [6.5 MEDIUM]

Patches_qemu-kvm:
upstream_qemu-kvm: needs-triage
precise/esm_qemu-kvm: ignored (end of ESM support, was needs-triage)
trusty_qemu-kvm: DNE
trusty/esm_qemu-kvm: DNE
xenial_qemu-kvm: DNE
bionic_qemu-kvm: DNE
eoan_qemu-kvm: DNE
focal_qemu-kvm: DNE
groovy_qemu-kvm: DNE
hirsute_qemu-kvm: DNE
impish_qemu-kvm: DNE
jammy_qemu-kvm: DNE
devel_qemu-kvm: DNE

Patches_qemu:
upstream_qemu: needs-triage
precise/esm_qemu: DNE
trusty_qemu: ignored (out of standard support)
trusty/esm_qemu: needs-triage
xenial_qemu: released (1:2.5+dfsg-5ubuntu10.44)
esm-infra/xenial_qemu: released (1:2.5+dfsg-5ubuntu10.44)
bionic_qemu: released (1:2.11+dfsg-1ubuntu7.26)
eoan_qemu: released (1:4.0+dfsg-0ubuntu9.6)
focal_qemu: not-affected (uses system libslirp)
groovy_qemu: not-affected (uses system libslirp)
hirsute_qemu: not-affected (uses system libslirp)
impish_qemu: not-affected (uses system libslirp)
jammy_qemu: not-affected (uses system libslirp)
devel_qemu: not-affected (uses system libslirp)

Patches_libslirp:
 upstream: https://gitlab.freedesktop.org/slirp/libslirp/-/commit/9bd6c5913271eabcb7768a58197ed3301fe19f2d
upstream_libslirp: needs-triage
precise/esm_libslirp: DNE
trusty_libslirp: ignored (out of standard support)
trusty/esm_libslirp: DNE
xenial_libslirp: DNE
bionic_libslirp: DNE
eoan_libslirp: DNE
focal_libslirp: released (4.1.0-2ubuntu2)
groovy_libslirp: released (4.1.0-2ubuntu2)
hirsute_libslirp: released (4.1.0-2ubuntu2)
impish_libslirp: released (4.1.0-2ubuntu2)
jammy_libslirp: released (4.1.0-2ubuntu2)
devel_libslirp: released (4.1.0-2ubuntu2)

Patches_slirp4netns:
upstream_slirp4netns: needs-triage
precise/esm_slirp4netns: DNE
trusty_slirp4netns: ignored (out of standard support)
trusty/esm_slirp4netns: DNE
xenial_slirp4netns: DNE
bionic_slirp4netns: DNE
eoan_slirp4netns: ignored (reached end-of-life)
focal_slirp4netns: needs-triage
groovy_slirp4netns: not-affected (1.0.1-1)
hirsute_slirp4netns: not-affected (1.0.1-1)
impish_slirp4netns: not-affected (1.0.1-1)
jammy_slirp4netns: not-affected (1.0.1-1)
devel_slirp4netns: not-affected (1.0.1-1)