CVE-2010-0428

Published: Aug 24, 2010Modified: Apr 29, 2026

6.6

Vector

AV:L/AC:M/Au:S/C:C/I:C/A:C

Exploitability: 2.7 / Impact: 10.0

Source: NVD

Description

libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly validate guest QXL driver pointers, which allows guest OS users to cause a denial of service (invalid pointer dereference and guest OS crash) or possibly gain privileges via unspecified vectors.

Affected (2)

Products: Redhat: Enterprise Virtualization, Qspice

2 products

Enterprise Virtualization

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Virtualization	Version 2.2
Redhat Qspice	Version 0.3.0

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (6)

https://bugzilla.redhat.com/show_bug.cgi?id=568699

Source: secalert@redhat.com

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0622.html

Source: secalert@redhat.com

PatchVendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0633.html

Source: secalert@redhat.com

PatchVendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=568699

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0622.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0633.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.