CVE-2012-3445

🗓️ 07 Aug 2012 21:00:00Reported by redhatType

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, leading to a denial of service (libvirtd crash) via an RPC command

Reporter	Title	Published	Views	Family All 43
Tenable Nessus	CentOS 6 : libvirt (CESA-2012:1202)	27 Aug 201200:00	–	nessus
Tenable Nessus	Fedora 16 : libvirt-0.9.6.2-1.fc16 (2012-11843)	23 Aug 201200:00	–	nessus
Tenable Nessus	Fedora 17 : libvirt-0.9.11.5-3.fc17 (2012-12523)	5 Sep 201200:00	–	nessus
Tenable Nessus	MiracleLinux 4 : libvirt-0.9.10-21.5.0.1.AXS4 (AXSA:2012-975:04)	14 Jan 202600:00	–	nessus
Tenable Nessus	openSUSE Security Update : libvirt (openSUSE-SU-2012:0991-1)	13 Jun 201400:00	–	nessus
Tenable Nessus	Oracle Linux 6 : libvirt (ELSA-2012-1202)	12 Jul 201300:00	–	nessus
Tenable Nessus	RHEL 6 : libvirt (RHSA-2012:1202)	24 Aug 201200:00	–	nessus
Tenable Nessus	RHEL 6 : rhev-hypervisor6 (RHSA-2012:1325)	8 Nov 201400:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : libvirt on SL6.x i386/x86_64 (20120823)	24 Aug 201200:00	–	nessus
Cent OS	libvirt security update	24 Aug 201201:09	–	centos

NVD

Node

redhat libvirtMatch0.9.13

Source	Link
securityfocus	www.securityfocus.com/bid/54748
openwall	www.openwall.com/lists/oss-security/2012/07/31/7
rhn	www.rhn.redhat.com/errata/RHSA-2012-1202.html
secunia	www.secunia.com/advisories/50372
secunia	www.secunia.com/advisories/50118
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
lists	www.lists.opensuse.org/opensuse-updates/2012-08/msg00023.html
redhat	www.redhat.com/archives/libvir-list/2012-July/msg01650.html
openwall	www.openwall.com/lists/oss-security/2012/07/31/4
secunia	www.secunia.com/advisories/50299

29 Apr 2026 01:13Current

6.3Medium risk

Vulners AI Score6.3

CVSS 23.5

EPSS0.01323

CWE-399