{"id":"CVE-2014-3640","details":"The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket.","modified":"2026-04-16T01:44:00.650879261Z","published":"2014-11-07T19:55:02Z","withdrawn":"2026-01-27T04:13:16.736083Z","related":["SUSE-SU-2015:0357-1","SUSE-SU-2016:0873-1","SUSE-SU-2016:0955-1","SUSE-SU-2016:1154-1","SUSE-SU-2016:1318-1","SUSE-SU-2016:1745-1","openSUSE-SU-2024:10196-1"],"references":[{"type":"FIX","url":"http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg03543.html"},{"type":"FIX","url":"http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04598.html"},{"type":"FIX","url":"http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04707.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2015-0349.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2015-0624.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2014/dsa-3044"},{"type":"ADVISORY","url":"http://www.debian.org/security/2014/dsa-3045"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2409-1"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1144818"}],"schema_version":"1.7.3"}