Vulnerability Description
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | 7.0 |
| Qemu | Qemu | 2.0.0 |
| Redhat | Enterprise Linux Desktop | 7.0 |
| Redhat | Enterprise Linux Hpc Node | 7.0 |
| Redhat | Enterprise Linux Server | 7.0 |
| Redhat | Enterprise Linux Workstation | 7.0 |
| Canonical | Ubuntu Linux | 10.04 |
Related Weaknesses (CWE)
References
- http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg03543.htmlPatchVendor Advisory
- http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04598.htmlPatchVendor Advisory
- http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04707.htmlPatchVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2015-0349.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-0624.htmlThird Party Advisory
- http://www.debian.org/security/2014/dsa-3044
- http://www.debian.org/security/2014/dsa-3045Third Party Advisory
- http://www.ubuntu.com/usn/USN-2409-1Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1144818Issue Tracking
- http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg03543.htmlPatchVendor Advisory
- http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04598.htmlPatchVendor Advisory
- http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04707.htmlPatchVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2015-0349.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-0624.htmlThird Party Advisory
- http://www.debian.org/security/2014/dsa-3044
FAQ
What is CVE-2014-3640?
CVE-2014-3640 is a vulnerability with a CVSS score of 2.1 (LOW). The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and ad...
How severe is CVE-2014-3640?
CVE-2014-3640 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3640?
Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Qemu Qemu, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Hpc Node, Redhat Enterprise Linux Server.