CVE-2014-3640

描述

The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket.

受影響套件(1)

• Debian/qemufrom 0, < 2.1+dfsg-5

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-3640