Описание
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down. An unprivileged client with a read-only connection could use this flaw to perform a denial of service attack by causing the libvirt daemon to crash.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 4.0.0-1ubuntu8.21 |
| devel | released | 7.6.0-0ubuntu3 |
| esm-infra-legacy/trusty | needs-triage | |
| esm-infra/bionic | not-affected | 4.0.0-1ubuntu8.21 |
| esm-infra/focal | not-affected | 6.0.0-0ubuntu8.16 |
| esm-infra/xenial | needs-triage | |
| focal | released | 6.0.0-0ubuntu8.16 |
| hirsute | ignored | end of life |
| impish | not-affected | 7.6.0-0ubuntu1 |
| jammy | released | 7.6.0-0ubuntu3 |
Показывать по
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down. An unprivileged client with a read-only connection could use this flaw to perform a denial of service attack by causing the libvirt daemon to crash.
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down. An unprivileged client with a read-only connection could use this flaw to perform a denial of service attack by causing the libvirt daemon to crash.
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister( ...
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down. An unprivileged client with a read-only connection could use this flaw to perform a denial of service attack by causing the libvirt daemon to crash.
EPSS
6.5 Medium
CVSS3