[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ELSA-2014-1873 -- Oracle libvirt

ID: oval:org.secpod.oval:def:1500805Date: (C)2015-01-02   (M)2023-02-20
Class: PATCHFamily: unix




An out-of-bounds read flaw was found in the way libvirt's qemuDomainGetBlockIoTune() function looked up the disk index in a non-persistent (live) disk configuration while a persistent disk configuration was being indexed. A remote attacker able to establish a read-only connection to libvirtd could use this flaw to crash libvirtd or, potentially, leak memory from the libvirtd process.

Platform:
Oracle Linux 6
Product:
libvirt
Reference:
ELSA-2014-1873
CVE-2014-3633
CVE-2014-3657
CVE-2014-7823
CVE    3
CVE-2014-3657
CVE-2014-3633
CVE-2014-7823
CPE    10
cpe:/a:redhat:libvirt:1.2.7
cpe:/a:redhat:libvirt:1.2.3
cpe:/a:redhat:libvirt:1.2.4
cpe:/a:redhat:libvirt:1.2.5
...

© SecPod Technologies