Your submission was sent successfully! Close

CVE-2018-5748

Published: 25 January 2018

qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.

Priority

Low

CVSS 3 base score: 7.5

Status

Package Release Status
libvirt
Launchpad, Ubuntu, Debian
artful
Released (3.6.0-1ubuntu6.3)
bionic Not vulnerable
(4.0.0-1ubuntu2)
cosmic Not vulnerable
(4.0.0-1ubuntu2)
disco Not vulnerable
(4.0.0-1ubuntu2)
eoan Not vulnerable
(4.0.0-1ubuntu2)
focal Not vulnerable
(4.0.0-1ubuntu2)
groovy Not vulnerable
(4.0.0-1ubuntu2)
hirsute Not vulnerable
(4.0.0-1ubuntu2)
precise Ignored
(end of ESM support, was needed)
trusty
Released (1.2.2-0ubuntu13.1.26)
upstream Needs triage

xenial
Released (1.3.1-1ubuntu10.19)
Patches:
upstream: https://libvirt.org/git/?p=libvirt.git;a=commit;h=bc251ea91bcfddd2622fce6bce701a438b2e7276