Total vulnerabilities in the database
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket.
| Software | From | Fixed in |
|---|---|---|
| debian / debian_linux | 7.0 | 7.0.x |
| qemu / qemu | 2.0.0 | 2.0.0.x |
| qemu / qemu | 2.0.2 | 2.0.2.x |
| qemu / qemu | 2.1.0-rc2 | 2.1.0-rc2.x |
| qemu / qemu | 2.0.0-rc0 | 2.0.0-rc0.x |
| qemu / qemu | 2.1.0 | 2.1.0.x |
| qemu / qemu | 2.1.1 | 2.1.1.x |
| qemu / qemu | 2.0.0-rc1 | 2.0.0-rc1.x |
| qemu / qemu | 2.1.0-rc3 | 2.1.0-rc3.x |
| qemu / qemu | 2.1.0-rc1 | 2.1.0-rc1.x |
| qemu / qemu | 2.1.0-rc5 | 2.1.0-rc5.x |
| qemu / qemu | 2.0.0-rc2 | 2.0.0-rc2.x |
| qemu / qemu | 2.1.0-rc0 | 2.1.0-rc0.x |
| qemu / qemu | 2.0.0-rc3 | 2.0.0-rc3.x |
| redhat / enterprise_linux_desktop | 7.0 | 7.0.x |
| redhat / enterprise_linux_workstation | 7.0 | 7.0.x |
| redhat / enterprise_linux_server | 7.0 | 7.0.x |
| redhat / enterprise_linux_hpc_node | 7.0 | 7.0.x |
| canonical / ubuntu_linux | 12.04 | 12.04.x |
| canonical / ubuntu_linux | 14.10 | 14.10.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |
| canonical / ubuntu_linux | 10.04 | 10.04.x |