Libvirt@1.0.0 Security Vulnerabilities and Issues — Libvirt@1.0.0 CVE List

Lucene search

RedhatLibvirt1.0.0

5 matches found

CVE•added 2013/03/20 3:55 p.m.•57 views

CVE-2013-1766

libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors.

3.6CVSS6.2AI score0.00056EPSS

CVE•added 2013/09/30 9:55 p.m.•56 views

CVE-2013-4297

The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and earlier allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via unspecified vectors.

4CVSS7.7AI score0.0058EPSS

CVE•added 2013/09/30 9:55 p.m.•56 views

CVE-2013-5651

The virBitmapParse function in util/virbitmap.c in libvirt before 1.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via a crafted bitmap, as demonstrated by a large nodeset value to numatune.

5CVSS7.8AI score0.00639EPSS

CVE•added 2013/09/30 9:55 p.m.•54 views

CVE-2013-2230

The qemu driver (qemu/qemu_driver.c) in libvirt before 1.1.1 allows remote authenticated users to cause a denial of service (daemon crash) via unspecified vectors involving "multiple events registration."

4CVSS5.9AI score0.0058EPSS

CVE•added 2013/09/30 9:55 p.m.•51 views

CVE-2013-4154

The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to "agent based cpu (un)plug," as demonstrated by the "virsh vcpucount foobar --guest" command.

4.3CVSS6.1AI score0.00731EPSS