tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure. CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-9824 User=admin}