Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-7336

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2013-7336
Last Modified 02 Jan 2015 09:18:35
Published 07 May 2014 06:55:03
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2013-7336

Summary

The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing seamless SPICE migration, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash) by causing domblkstat to be called at the same time as the qemuMonitorGetSpiceMigrationStatus function.

Vulnerable Systems

Operating System

  • Novell Opensuse 13.1

Application

  • Redhat Libvirt 1.0.0

  • Redhat Libvirt 1.0.1

  • Redhat Libvirt 1.0.2

  • Redhat Libvirt 1.0.3

  • Redhat Libvirt 1.0.4

  • Redhat Libvirt 1.0.5

  • Redhat Libvirt 1.0.5.1

  • Redhat Libvirt 1.0.5.2

  • Redhat Libvirt 1.0.5.3

  • Redhat Libvirt 1.0.5.4

  • Redhat Libvirt 1.0.5.5

  • Redhat Libvirt 1.0.5.6

  • Redhat Libvirt 1.0.6

  • Redhat Libvirt 1.1.0

  • Redhat Libvirt 1.1.1

  • Redhat Libvirt 1.1.2


References

MLIST - [oss-security] 20140318 Re: CVE request -- libvirt: unprivileged user can crash libvirtd during spice migration

CONFIRM - http://libvirt.org/git/?p=libvirt.git;a=commit;h=484cc321

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1077620

MLIST - [oss-security] 20140318 CVE request -- libvirt: unprivileged user can crash libvirtd during spice migration

SUSE - openSUSE-SU-2014:0593

CONFIRM - http://libvirt.org/news.html

GENTOO - GLSA-201412-04

SECUNIA - 60895


Last Updated: 27 May 2016 10:50:04