Lucene search
K

3825 matches found

Prion
Prion
added 2013/09/30 9:55 p.m.19 views

Double free

Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemuagent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to cause a denial of service daemon crash via a cpu count request, as demonstrated by the "virsh vcpucount dom --guest" command...

5CVSS7.1AI score0.01676EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2013/09/30 9:55 p.m.29 views

CVE-2013-2230

The qemu driver qemu/qemudriver.c in libvirt before 1.1.1 allows remote authenticated users to cause a denial of service daemon crash via unspecified vectors involving "multiple events registration."...

4CVSS6.9AI score0.02079EPSS
Exploits0References1
Prion
Prion
added 2013/09/30 9:55 p.m.22 views

Null pointer dereference

The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of service NULL pointer dereference and crash via vectors related to "agent based cpu unplug," as demonstrated by the "virsh vcpucount foobar --guest" command...

4.3CVSS7.1AI score0.02202EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2013/09/30 9:55 p.m.14 views

Design/Logic Flaw

The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to gain privileges...

6.9CVSS6.8AI score0.00487EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2013/09/30 9:55 p.m.20 views

CVE-2013-4292

libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service memory consumption via a large number of domain migrate parameters in certain RPC calls in 1 daemon/remote.c and 2 remote/remotedriver.c...

2.1CVSS5.9AI score0.00339EPSS
Exploits0References2
Prion
Prion
added 2013/09/30 9:55 p.m.17 views

Double free

Double free vulnerability in the virConnectListAllInterfaces method in interface/interfacebackendnetcf.c in libvirt 1.0.6 allows remote attackers to cause a denial of service libvirtd crash via a filtering flag that causes an interface to be skipped, as demonstrated by the "virsh iface-list...

5CVSS6.8AI score0.08267EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2013/09/30 9:55 p.m.20 views

Memory corruption

The xenDaemonListDefinedDomains function in xen/xendinternal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service memory corruption and crash via vectors involving the virConnectListDefinedDomains API function...

4CVSS6.8AI score0.0197EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2013/09/30 9:55 p.m.18 views

CVE-2013-4154

The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of service NULL pointer dereference and crash via vectors related to "agent based cpu unplug," as demonstrated by the "virsh vcpucount foobar --guest" command...

4.3CVSS6.9AI score0.02202EPSS
Exploits1References4
Prion
Prion
added 2013/09/30 9:55 p.m.17 views

Design/Logic Flaw

The qemu driver qemu/qemudriver.c in libvirt before 1.1.1 allows remote authenticated users to cause a denial of service daemon crash via unspecified vectors involving "multiple events registration."...

4CVSS6.6AI score0.02079EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/09/30 9:0 p.m.28 views

CVE-2013-5651

The virBitmapParse function in util/virbitmap.c in libvirt before 1.1.2 allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via a crafted bitmap, as demonstrated by a large nodeset value to numatune...

7.5AI score0.02258EPSS
Exploits1References8
Cvelist
Cvelist
added 2013/09/30 9:0 p.m.27 views

CVE-2013-4291

The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to gain privileges...

7.9AI score0.00487EPSS
Exploits0References4
CVE
CVE
added 2013/09/30 9:0 p.m.98 views

CVE-2013-4296

CVE-2013-4296 affects libvirt: the remoteDispatchDomainMemoryStats function could be exploited by remote-authenticated users to trigger a denial-of-service via an uninitialized pointer dereference. Affected releases include libvirt 0.9.1–0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, a...

4CVSS7.6AI score0.02678EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2013/09/30 9:0 p.m.31 views

CVE-2013-4153

Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemuagent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to cause a denial of service daemon crash via a cpu count request, as demonstrated by the "virsh vcpucount dom --guest" command...

7.7AI score0.01676EPSS
Exploits1References5
Cvelist
Cvelist
added 2013/09/30 9:0 p.m.24 views

CVE-2013-4296

The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated users to cause a denial of service uninitialized pointer dereference and crash via a crafted RPC ca...

7.3AI score0.02678EPSS
Exploits0References11
Cvelist
Cvelist
added 2013/09/30 9:0 p.m.26 views

CVE-2013-4292

libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service memory consumption via a large number of domain migrate parameters in certain RPC calls in 1 daemon/remote.c and 2 remote/remotedriver.c...

7.5AI score0.00339EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/09/30 9:0 p.m.22 views

CVE-2013-4297

The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and earlier allows remote authenticated users to cause a denial of service uninitialized pointer dereference and crash via unspecified vectors...

7.4AI score0.0197EPSS
Exploits1References4
CVE
CVE
added 2013/09/30 9:0 p.m.77 views

CVE-2013-4292

CVE-2013-4292 affects libvirt 1.1.0 and 1.1.1. Local users can cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote/remote_driver.c. Exploitation details are not provided in the sources; the NVD e...

2.1CVSS7.7AI score0.00339EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/09/30 9:0 p.m.25 views

CVE-2013-4154

The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of service NULL pointer dereference and crash via vectors related to "agent based cpu unplug," as demonstrated by the "virsh vcpucount foobar --guest" command...

7.6AI score0.02202EPSS
Exploits1References5
CVE
CVE
added 2013/09/30 9:0 p.m.94 views

CVE-2013-5651

CVE-2013-5651 affects libvirt: the virBitmapParse function in util/virbitmap.c (pre-1.1.2) can read beyond the bounds of an array when processing a crafted bitmap (e.g., large nodeset value for numatune), causing a denial of service. OpenSUSE/Nessus entries confirm the fix for virBitmapParse out-...

5CVSS7.8AI score0.02258EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2013/09/30 9:0 p.m.73 views

CVE-2013-4297

The CVE-2013-4297 issue affects libvirt up to version 1.1.2, where the virFileNBDDeviceAssociate function in util/virfile.c can trigger a denial of service via an uninitialized pointer dereference when accessed by remote, authenticated users. The vectors are unspecified in the provided documents....

4CVSS7.7AI score0.0197EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder