CVE-2014-3640

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2014-3640
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2014-3640.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2014-3640
Downstream
Related
Withdrawn
2026-01-27T04:13:16.736083Z
Published
2014-11-07T19:55:02Z
Modified
2026-01-27T04:13:16.736083Z
Summary
[none]
Details

The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket.

References

Affected packages