[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-commits] [qemu/qemu] 7769c2: slirp: update to fix CVE-2020-1983
From: |
Marc-Andre Lureau |
Subject: |
[Qemu-commits] [qemu/qemu] 7769c2: slirp: update to fix CVE-2020-1983 |
Date: |
Wed, 22 Apr 2020 13:04:09 +0000 (UTC) |
Branch: refs/heads/master
Home: https://github.com/qemu/qemu
Commit: 7769c23774d1278f60b9e40d2c0b98784de6425f
https://github.com/qemu/qemu/commit/7769c23774d1278f60b9e40d2c0b98784de6425f
Author: Marc-André Lureau <address@hidden>
Date: 2020-04-21 (Tue, 21 Apr 2020)
Changed paths:
M slirp
Log Message:
-----------
slirp: update to fix CVE-2020-1983
This is an update on the stable-4.2 branch of libslirp.git:
git shortlog 55ab21c9a3..2faae0f778f81
Marc-André Lureau (1):
Fix use-afte-free in ip_reass() (CVE-2020-1983)
CVE-2020-1983 is actually a follow up fix for commit
126c04acbabd7ad32c2b018fe10dfac2a3bc1210 ("Fix heap overflow in
ip_reass on big packet input") which was was included in qemu
v4.1 (commit e1a4a24d262ba5ac74ea1795adb3ab1cd574c7fb "slirp: update
with CVE-2019-14378 fix").
Signed-off-by: Marc-André Lureau <address@hidden>
Message-id: address@hidden
Signed-off-by: Peter Maydell <address@hidden>
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Qemu-commits] [qemu/qemu] 7769c2: slirp: update to fix CVE-2020-1983,
Marc-Andre Lureau <=