4 matches found
Out-Of-Bounds Read
libvirt.so is vulnerable to an out-of-bound read. The vulnerability exists in qemuDomainGetBlockIoTune function in qemu/qemudriver.c file because the live definition is used to look up the disk index while the persistant one is indexed which allows an attacker to cause a denial of service conditi...
CVE-2014-3633
The CVE-2014-3633 issue affects libvirt (libvirt before 1.2.9) in the qemu_domainGetBlockIoTune path. When a disk is hot-plugged or removed from the live image, a crafted blkiotune query can trigger an out-of-bounds read, enabling remote attackers to cause a denial of service (crash) or read sens...
Mandriva Linux Security Advisory : libvirt (MDVSA-2014:195)
Multiple vulnerabilities has been discovered and corrected in libvirt : An out-of-bounds read flaw was found in the way libvirt's qemuDomainGetBlockIoTune function looked up the disk index in a non-persistent live disk configuration while a persistent disk configuration was being indexed. A remot...
CVE-2014-3633
The qemuDomainGetBlockIoTune function in qemu/qemudriver.c in libvirt before 1.2.9, when a disk has been hot-plugged or removed from the live image, allows remote attackers to cause a denial of service crash or read sensitive heap information via a crafted blkiotune query, which triggers an...