CVE-2020-1983 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
palo_alto	CNA	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 35%

Vendor	Product	Version
libslirp_project	libslirp	𝑥 ≤ 4.2.0
debian	debian_linux	8.0
debian	debian_linux	9.0
opensuse	leap	15.1
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	19.10
canonical	ubuntu_linux	20.04

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

libslirp

bullseye	4.4.0-1+deb11u2 fixed
buster	no-dsa
bookworm	4.7.0-1 fixed
sid	4.8.0-1 fixed
trixie	4.8.0-1 fixed

qemu

bullseye	1:5.2+dfsg-11+deb11u3 fixed
buster	no-dsa
bullseye (security)	1:5.2+dfsg-11+deb11u2 fixed
bookworm	1:7.2+dfsg-7+deb12u7 fixed
sid	1:9.1.1+ds-2 fixed
trixie	1:9.1.1+ds-2 fixed

slirp4netns

bullseye	1.0.1-2 fixed
buster	no-dsa
bookworm	1.2.0-1 fixed
sid	1.2.1-1 fixed
trixie	1.2.1-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

libslirp

noble	Fixed 4.1.0-2ubuntu2 released
mantic	Fixed 4.1.0-2ubuntu2 released
lunar	Fixed 4.1.0-2ubuntu2 released
kinetic	Fixed 4.1.0-2ubuntu2 released
jammy	Fixed 4.1.0-2ubuntu2 released
impish	Fixed 4.1.0-2ubuntu2 released
hirsute	Fixed 4.1.0-2ubuntu2 released
groovy	Fixed 4.1.0-2ubuntu2 released
focal	Fixed 4.1.0-2ubuntu2 released
eoan	dne
bionic	dne
xenial	dne
trusty	dne

qemu

noble	not-affected
mantic	not-affected
lunar	not-affected
kinetic	not-affected
jammy	not-affected
impish	not-affected
hirsute	not-affected
groovy	not-affected
focal	not-affected
eoan	Fixed 1:4.0+dfsg-0ubuntu9.6 released
bionic	Fixed 1:2.11+dfsg-1ubuntu7.26 released
xenial	Fixed 1:2.5+dfsg-5ubuntu10.44 released
trusty	needs-triage

qemu-kvm

noble	dne
mantic	dne
lunar	dne
kinetic	dne
jammy	dne
impish	dne
hirsute	dne
groovy	dne
focal	dne
eoan	dne
bionic	dne
xenial	dne
trusty	dne

slirp4netns

noble	not-affected
mantic	not-affected
lunar	not-affected
kinetic	not-affected
jammy	not-affected
impish	not-affected
hirsute	not-affected
groovy	not-affected
focal	needs-triage
eoan	ignored
bionic	dne
xenial	dne
trusty	dne

Known Exploits!

Common Weakness Enumeration

CWE-416 - Use After Free
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

References

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00001.html

https://gitlab.freedesktop.org/slirp/libslirp/-/commit/9ac0371bb8c0a40f5d9f82a1c25129660e81df04

https://gitlab.freedesktop.org/slirp/libslirp/-/issues/20

https://lists.debian.org/debian-lts-announce/2020/06/msg00032.html

https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWFD4MWV3YWIHVHSA2F7FKOLJFL4PHOX/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NKT2MTSINE4NUPG5L6BYH6N23NBNITOL/

https://usn.ubuntu.com/4372-1/

https://www.debian.org/security/2020/dsa-4665

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00001.html

https://gitlab.freedesktop.org/slirp/libslirp/-/commit/9ac0371bb8c0a40f5d9f82a1c25129660e81df04

https://gitlab.freedesktop.org/slirp/libslirp/-/issues/20

https://lists.debian.org/debian-lts-announce/2020/06/msg00032.html

https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWFD4MWV3YWIHVHSA2F7FKOLJFL4PHOX/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NKT2MTSINE4NUPG5L6BYH6N23NBNITOL/

https://usn.ubuntu.com/4372-1/

https://www.debian.org/security/2020/dsa-4665