CVE-2020-8608 buffer overflow (libslirp)

Moderate

AkihiroSuda published GHSA-p3hx-89v2-4r99

Feb 15, 2020

Package

slirp4netns

Affected versions

< 0.3.2, < 0.4.0-beta.3

Patched versions

0.3.2, 0.4.0-beta.3, and later

Description

Impact

https://security-tracker.debian.org/tracker/CVE-2020-8608

In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code.

Patches

slirp4netns v0.3.2, 0.4.0-beta.3, and later versions are not affected because tcp_emu is disabled:

8c4db8e#diff-6ca387a3a00bdc638c01a82f8200db0fR106

3f9e646#diff-6ca387a3a00bdc638c01a82f8200db0fR106