Описание
The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows local users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted offset value in a "virsh vol-upload" command.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.2.16-2ubuntu9 |
| esm-infra-legacy/trusty | not-affected | code not present |
| lucid | not-affected | code not present |
| precise | not-affected | code not present |
| trusty | not-affected | code not present |
| trusty/esm | not-affected | code not present |
| upstream | released | 1.2.9-7,1.2.11 |
| utopic | ignored | end of life |
| vivid | not-affected | 1.2.12-0ubuntu14.2 |
Показывать по
2.1 Low
CVSS2
Связанные уязвимости
The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows local users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted offset value in a "virsh vol-upload" command.
The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows local users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted offset value in a "virsh vol-upload" command.
The storageVolUpload function in storage/storage_driver.c in libvirt b ...
The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows local users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted offset value in a "virsh vol-upload" command.
2.1 Low
CVSS2