2019-07-29 10:05:22
mitre
PUBLISHED
ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.