Veracode Vulnerability DatabaseVERACODE:27844Denial Of Service (DoS)
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
spice-vdagent is vulnerable to denial of service. There is no limit to the number of client connections that can be established via the UNIX domain socket in /run/spice-vdagentd/spice-vdagent-sock, and are not subjected to timeout or any preconditions for them to stay alive. Any local user in the VM can prevent legitimate spice-vdagent instances from connecting to the spice-vdagentd daemon. This results in spice-vdagentd not being able to open further connections for legitimate clients or perform other tasks.
References
bugzilla.redhat.com/show_bug.cgi?id=1886366
lists.debian.org/debian-lts-announce/2021/01/msg00012.html
lists.fedoraproject.org/archives/list/[email protected]/message/GQT56LATVTB2DJOVVJOKQVMVUXYCT2VB/
lists.fedoraproject.org/archives/list/[email protected]/message/OIWJ2EIQXWEA2VDBODEATHAT37X4CREP/
www.openwall.com/lists/oss-security/2020/11/04/1
Related
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C