CVE-2014-3640 (retired)

Priority
Description
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local
users to cause a denial of service (NULL pointer dereference) by sending a
udp packet with a value of 0 in the source port and address, which triggers
access of an uninitialized socket.
Assigned-to
mdeslaur
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):released (2.0.0+dfsg-2ubuntu1.7)
Patches:
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=01f7cecf0037997cb0e58ec0d56bf9b5a6f7cb2a
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-26 12:13:09 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)