First published: Mon Jul 27 2020(Updated: )
Ziming Zhang and VictorV discovered that libslirp incorrectly handled replying to certain ICMP echo requests. A remote attacker could possibly use this issue to cause libslirp to crash, resulting in a denial of service.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libslirp0 | <4.1.0-2ubuntu2.1 | 4.1.0-2ubuntu2.1 |
Ubuntu Ubuntu | =20.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is USN-4437-1.
The severity of USN-4437-1 is not mentioned in the provided information.
The libslirp vulnerability could allow a remote attacker to cause a denial of service by crashing the libslirp library.
The affected software is libslirp0 version 4.1.0-2ubuntu2.1 on Ubuntu 20.04.
To fix the libslirp vulnerability, update the libslirp0 package to version 4.1.0-2ubuntu2.1 or higher.