Описание
The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers an out-of-bounds read or a free of an invalid pointer.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 0.9.13-0ubuntu11 |
| hardy | ignored | end of life |
| lucid | not-affected | code not present |
| natty | not-affected | code not present |
| oneiric | not-affected | code not present |
| precise | not-affected | code not present |
| upstream | needs-triage |
Показывать по
EPSS
3.5 Low
CVSS2
Связанные уязвимости
The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers an out-of-bounds read or a free of an invalid pointer.
The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers an out-of-bounds read or a free of an invalid pointer.
The virTypedParameterArrayClear function in libvirt 0.9.13 does not pr ...
The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers an out-of-bounds read or a free of an invalid pointer.
ELSA-2012-1202: libvirt security and bug fix update (MODERATE)
EPSS
3.5 Low
CVSS2