AVG-1305 log

Package libslirp
Status Fixed
Severity Medium
Type information disclosure
Affected 4.3.1-1
Fixed 4.4.0-1
Current 4.6.1-1 [community]
Ticket None
Created Tue Dec 1 10:25:58 2020
Issue Severity Remote Type Description
CVE-2020-29130 Medium No Information disclosure
slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet...
CVE-2020-29129 Medium No Information disclosure
ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet...
Date Advisory Package Type
05 Dec 2020 ASA-202012-7 libslirp information disclosure
References
https://www.openwall.com/lists/oss-security/2020/11/27/1