6.9 Medium
AI Score
Confidence
High
3.3 Low
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:N/I:N/A:P
0.023 Low
EPSS
Percentile
89.3%
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service (crash) by causing multiple threads to report errors at the same time.
libvirt.org/git/?p=libvirt.git%3Ba=commit%3Bh=f44bfb7fb978c9313ce050a1c4149bf04aa0a670
secunia.com/advisories/44459
securitytracker.com/id?1025477
support.avaya.com/css/P8/documents/100134583
www.debian.org/security/2011/dsa-2280
www.redhat.com/support/errata/RHSA-2011-0478.html
www.redhat.com/support/errata/RHSA-2011-0479.html
www.securityfocus.com/bid/47148
www.ubuntu.com/usn/USN-1152-1
bugzilla.redhat.com/show_bug.cgi?id=693391
www.redhat.com/archives/libvir-list/2011-March/msg01087.html