slirp4netns (SUSE:Linux Enterprise Module for Containers 15 SP1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Containers 15 SP1 package slirp4netns, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2018-15664 — CVSS 7.5 (high): In Docker through 18.06.1-ce-rc2, the API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with…
CVE-2020-1983 — CVSS 7.5 (high): A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of…
CVE-2019-10152 — CVSS 7.2 (high): A path traversal vulnerability has been discovered in podman before version 1.4.0 in the way it handles symlinks inside containers. An…
CVE-2020-10756 — CVSS 6.5 (medium): An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the…