Executive Summary

Informations
NameCVE-2019-15890First vendor Publication2019-09-06
VendorCveLast vendor Modification2019-09-20

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890

CWE : Common Weakness Enumeration

%idName
100 %CWE-416Use After Free

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application1

Sources (Detail)

SourceUrl
CONFIRM http://www.openwall.com/lists/oss-security/2019/09/06/3
MISC https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943
MLIST https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2019-09-20 17:19:27
  • Multiple Updates
2019-09-10 17:19:25
  • Multiple Updates
2019-09-07 00:19:22
  • Multiple Updates
2019-09-06 21:19:39
  • First insertion