RHSA-2015:0323-01 -- Redhat libvirtID: oval:org.secpod.oval:def:501531 | Date: (C)2015-03-18 (M)2023-11-10 |
Class: PATCH | Family: unix |
The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. It was found that QEMU"s qemuDomainMigratePerform and qemuDomainMigrateFinish2 functions did not correctly perform a domain unlock on a failed ACL check. A remote attacker able to establish a connection to libvirtd could use this flaw to lock a domain of a more privileged user, causing a denial of service.
Platform: |
Red Hat Enterprise Linux 7 |