CVE-2018-11806

Published: Jun 13, 2018
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-11806" target="_blank" rel="noopener"> CVE-2018-11806
Severity: High
Exploit:

m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
qemu / qemu	-	2.12.1.x
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	18.04	18.04.x
canonical / ubuntu_linux	18.10	18.10.x
canonical / ubuntu_linux	14.04	14.04.x
redhat / enterprise_linux_desktop	7.0	7.0.x
redhat / enterprise_linux_workstation	7.0	7.0.x
redhat / enterprise_linux_server	7.0	7.0.x
redhat / enterprise_linux_desktop	6.0	6.0.x
redhat / enterprise_linux_server	6.0	6.0.x
redhat / enterprise_linux_workstation	6.0	6.0.x
redhat / enterprise_linux_eus	7.5	7.5.x
redhat / openstack	10	10.x
redhat / enterprise_linux_server_tus	7.6	7.6.x
redhat / enterprise_linux_server_aus	7.6	7.6.x
redhat / enterprise_linux_eus	7.6	7.6.x
redhat / openstack	12	12.x
redhat / openstack	9	9.x
redhat / openstack	8	8.x
redhat / enterprise_linux_server_aus	7.7	7.7.x
redhat / enterprise_linux_server_tus	7.7	7.7.x
redhat / enterprise_linux_eus	7.7	7.7.x
redhat / openstack	13	13.x
redhat / virtualization	4.0	4.0.x
debian / debian_linux	8.0	8.0.x
debian / debian_linux	9.0	9.0.x