Описание
A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead to a NULL-pointer dereference and subsequent crash of virtinterfaced. This issue could allow clients connecting to the read-only socket to crash the virtinterfaced daemon.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 10.6.0-1ubuntu3 |
| esm-infra-legacy/trusty | not-affected | |
| esm-infra/bionic | not-affected | |
| esm-infra/focal | not-affected | 6.0.0-0ubuntu8.20 |
| esm-infra/xenial | not-affected | |
| focal | not-affected | 6.0.0-0ubuntu8.20 |
| jammy | not-affected | 8.0.0-1ubuntu7.10 |
| noble | not-affected | 10.0.0-2ubuntu8.3 |
| oracular | released | 10.6.0-1ubuntu3 |
| trusty/esm | not-affected |
Показывать по
EPSS
6.2 Medium
CVSS3
Связанные уязвимости
A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead to a NULL-pointer dereference and subsequent crash of virtinterfaced. This issue could allow clients connecting to the read-only socket to crash the virtinterfaced daemon.
A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead to a NULL-pointer dereference and subsequent crash of virtinterfaced. This issue could allow clients connecting to the read-only socket to crash the virtinterfaced daemon.
A flaw was found in libvirt. A refactor of the code fetching the list ...
A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead to a NULL-pointer dereference and subsequent crash of virtinterfaced. This issue could allow clients connecting to the read-only socket to crash the virtinterfaced daemon.
EPSS
6.2 Medium
CVSS3