CVE-2013-7336
Published: 7 May 2014
The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing seamless SPICE migration, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash) by causing domblkstat to be called at the same time as the qemuMonitorGetSpiceMigrationStatus function.
Priority
Status
Package | Release | Status |
---|---|---|
libvirt Launchpad, Ubuntu, Debian |
lucid |
Not vulnerable
(code not present)
|
precise |
Not vulnerable
(code not present)
|
|
quantal |
Not vulnerable
(code not present)
|
|
saucy |
Released
(1.1.1-0ubuntu8.11)
|
|
trusty |
Not vulnerable
(1.2.2-0ubuntu4)
|
|
upstream |
Released
(1.1.4-1)
|
|
Patches: upstream: http://libvirt.org/git/?p=libvirt.git;a=commit;h=fea2550974137918c2bc9e01f3eb00421585450c |