Title: libslirp: Multiple vulnerabilities ([glsa=202107-44]GLSA 202107-44[/glsa])
Severity: low
Exploitable: local
Date: 2021-07-20
Bug(s): #796347
ID: 202107-44
Synopsis
Multiple vulnerabilities have been found in libslirp, the worst of
which could result in a Denial of Service condition.
Background
libslirp is a TCP/IP emulator used to provide virtual networking
services.
Affected Packages
Package: net-libs/libslirp
Vulnerable: < 4.6.0
Unaffected: >= 4.6.0
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in libslirp. Please review
the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All libslirp users should upgrade to the latest version:
Code: Select all
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-libs/libslirp-4.6.0"
References
CVE-2021-3592
CVE-2021-3593
CVE-2021-3594
CVE-2021-3595