CVE-2013-4399

Опубликовано: 12 дек. 2014

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

The remoteClientFreeFunc function in daemon/remote.c in libvirt before 1.1.3, when ACLs are used, does not set an identity, which causes event handler removal to be denied and remote attackers to cause a denial of service (use-after-free and crash) by registering an event handler and then closing the connection.

Комментарий

CWE-416: Use After Free

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*

Версия до 1.1.3 (включая)

cpe:2.3:a:redhat:libvirt:0.0.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.0.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.0.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.0.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.0.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.0.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.7:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.8:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.1.9:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.2.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.2.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.2.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.2.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.3.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.3.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.3.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.3.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.4.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.4.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.4.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.4.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.4.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.4.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.4.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.5.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.5.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.6.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.6.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.6.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.6.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.6.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.6.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.7.7:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.7:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.8.8:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.6.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.6.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.6.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.7:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.8:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.9:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.10:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.7:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.11.8:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.12:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.9.13:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.7:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:0.10.2.8:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.5.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.5.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.5.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.5.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.5.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.5.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.0.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.1.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:libvirt:1.1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00677

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2013-4399

ubuntu

около 11 лет назад

CVE-2013-4399

redhat

больше 12 лет назад

CVE-2013-4399

debian

около 11 лет назад

The remoteClientFreeFunc function in daemon/remote.c in libvirt before ...

GHSA-hr87-j88c-crv5

github

больше 3 лет назад

EPSS

Процентиль: 71%

0.00677

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other