Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2013-6458

Опубликовано: 24 янв. 2014
Источник: debian
EPSS Низкий

Описание

Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libvirtfixed1.2.1-1package
libvirtend-of-lifesqueezepackage

Примечания

  • https://www.redhat.com/archives/libvir-list/2013-December/msg01202.html

  • upstream fix: http://libvirt.org/git/?p=libvirt.git;a=commit;h=db86da5ca2109e4006c286a09b6c75bfe10676ad

EPSS

Процентиль: 73%
0.00779
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2013-6458

ubuntu
больше 11 лет назад

Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.

redhat логотип

CVE-2013-6458

redhat
больше 11 лет назад

Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.

nvd логотип

CVE-2013-6458

nvd
больше 11 лет назад

Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.

github логотип

GHSA-9hqh-qqff-45p6

github
больше 3 лет назад

Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.

oracle-oval логотип

ELSA-2014-0103

oracle-oval
больше 11 лет назад

ELSA-2014-0103: libvirt security and bug fix update (MODERATE)

EPSS

Процентиль: 73%
0.00779
Низкий