A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service. Reference: https://gitlab.freedesktop.org/slirp/libslirp/-/issues/20 Upstream commit: https://gitlab.freedesktop.org/slirp/libslirp/-/commit/9ac0371bb8c0a40f5d9f82a1c25129660e81df04
Created libslirp tracking bugs for this issue: Affects: epel-8 [bug 1829827] Affects: fedora-all [bug 1829826]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 1835839]
OpenShift 4 packages slirp4netns which vendors in libslirp v4.1.0. Additionally, have checked that the patch for src/ip_input.c has not been already applied/backported.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:3053 https://access.redhat.com/errata/RHSA-2020:3053
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-1983
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:4079 https://access.redhat.com/errata/RHSA-2020:4079
This issue has been addressed in the following products: Advanced Virtualization for RHEL 8.1.1 Via RHSA-2020:4290 https://access.redhat.com/errata/RHSA-2020:4290
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:4676 https://access.redhat.com/errata/RHSA-2020:4676
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2021:0346 https://access.redhat.com/errata/RHSA-2021:0346
This issue has been addressed in the following products: Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 Red Hat Virtualization Engine 4.3 Via RHSA-2021:0459 https://access.redhat.com/errata/RHSA-2021:0459
This issue has been addressed in the following products: Red Hat OpenStack Platform 13.0 (Queens) Via RHSA-2021:0934 https://access.redhat.com/errata/RHSA-2021:0934