vulnerability

CentOS Linux: CVE-2019-14378: Important: container-tools:rhel8 security, bug fix, and enhancement update (Multiple Advisories)

Try Surface Command
Back to search
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
Jul 29, 2019
Added
Nov 6, 2019
Modified
May 25, 2023

Description

ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.

Solution(s)

centos-upgrade-buildahcentos-upgrade-buildah-debuginfocentos-upgrade-buildah-debugsourcecentos-upgrade-buildah-testscentos-upgrade-buildah-tests-debuginfocentos-upgrade-cockpit-podmancentos-upgrade-container-selinuxcentos-upgrade-containernetworking-pluginscentos-upgrade-containernetworking-plugins-debuginfocentos-upgrade-containernetworking-plugins-debugsourcecentos-upgrade-containers-commoncentos-upgrade-fuse-overlayfscentos-upgrade-fuse-overlayfs-debuginfocentos-upgrade-fuse-overlayfs-debugsourcecentos-upgrade-oci-systemd-hookcentos-upgrade-oci-systemd-hook-debuginfocentos-upgrade-oci-systemd-hook-debugsourcecentos-upgrade-oci-umountcentos-upgrade-oci-umount-debuginfocentos-upgrade-oci-umount-debugsourcecentos-upgrade-podmancentos-upgrade-podman-debuginfocentos-upgrade-podman-debugsourcecentos-upgrade-podman-dockercentos-upgrade-podman-manpagescentos-upgrade-podman-remotecentos-upgrade-podman-remote-debuginfocentos-upgrade-podman-testscentos-upgrade-python-podman-apicentos-upgrade-qemu-guest-agentcentos-upgrade-qemu-imgcentos-upgrade-qemu-img-macentos-upgrade-qemu-kvmcentos-upgrade-qemu-kvm-commoncentos-upgrade-qemu-kvm-common-macentos-upgrade-qemu-kvm-debuginfocentos-upgrade-qemu-kvm-macentos-upgrade-qemu-kvm-ma-debuginfocentos-upgrade-qemu-kvm-toolscentos-upgrade-qemu-kvm-tools-macentos-upgrade-runccentos-upgrade-runc-debuginfocentos-upgrade-runc-debugsourcecentos-upgrade-skopeocentos-upgrade-skopeo-debuginfocentos-upgrade-skopeo-debugsourcecentos-upgrade-skopeo-testscentos-upgrade-slirp4netnscentos-upgrade-slirp4netns-debuginfocentos-upgrade-slirp4netns-debugsourcecentos-upgrade-toolbox

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today