CVE-2014-3640

Priority
Description
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local
users to cause a denial of service (NULL pointer dereference) by sending a
udp packet with a value of 0 in the source port and address, which triggers
access of an uninitialized socket.
Assigned-to
mdeslaur
Notes
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):released (2.0.0+dfsg-2ubuntu1.7)
Patches:
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=01f7cecf0037997cb0e58ec0d56bf9b5a6f7cb2a
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE
More Information

Updated: 2019-12-05 18:37:33 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)