Lucene search

K
RedhatLibvirt

5 matches found

CVE
CVE
added 2016/04/11 9:59 p.m.76 views

CVE-2015-5313

Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs.c in libvirt, when fine-grained Access Control Lists (ACL) are in effect, allows local users with storage_vol:create ACL but not domain:write permission to write to arbitrary files v...

2.5CVSS4.9AI score0.00057EPSS
CVE
CVE
added 2014/12/19 3:59 p.m.71 views

CVE-2014-8136

The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors.

2.1CVSS7.1AI score0.00131EPSS
CVE
CVE
added 2014/01/07 7:55 p.m.65 views

CVE-2013-6436

The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash) via a guest in the shutdown s...

2.1CVSS7.7AI score0.00068EPSS
CVE
CVE
added 2013/09/30 9:55 p.m.60 views

CVE-2013-4292

libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote/remote_driver.c.

2.1CVSS7.7AI score0.00068EPSS
CVE
CVE
added 2014/12/19 3:59 p.m.59 views

CVE-2014-8135

The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows local users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted offset value in a "virsh vol-upload" command.

2.1CVSS7.6AI score0.00158EPSS