[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

RHSA-2015:0323-01 -- Redhat libvirt

ID: oval:org.secpod.oval:def:501531Date: (C)2015-03-18   (M)2023-11-10
Class: PATCHFamily: unix




The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. It was found that QEMU"s qemuDomainMigratePerform and qemuDomainMigrateFinish2 functions did not correctly perform a domain unlock on a failed ACL check. A remote attacker able to establish a connection to libvirtd could use this flaw to lock a domain of a more privileged user, causing a denial of service.

Platform:
Red Hat Enterprise Linux 7
Product:
libvirt
Reference:
RHSA-2015:0323-01
CVE-2014-8136
CVE-2015-0236
CVE    2
CVE-2014-8136
CVE-2015-0236
CPE    11
cpe:/a:redhat:libvirt:1.2.7
cpe:/o:redhat:enterprise_linux:7
cpe:/a:redhat:libvirt:1.2.3
cpe:/a:redhat:libvirt:1.2.4
...

© SecPod Technologies