CVE-2013-4292

Published: Sep 30, 2013Modified: Apr 29, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote/remote_driver.c.

Affected (2)

Products: Redhat: Libvirt

Redhat

1 product

Libvirt

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Libvirt	Version 1.1.0
Redhat Libvirt	Version 1.1.1

Related CWEs

CWE-399

References (8)

http://libvirt.org/news.html

Source: secalert@redhat.com

http://secunia.com/advisories/60895

Source: secalert@redhat.com

http://security.gentoo.org/glsa/glsa-201412-04.xml

Source: secalert@redhat.com

http://www.mail-archive.com/libvir-list%40redhat.com/msg83332.html

Source: secalert@redhat.com

http://libvirt.org/news.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/60895

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-201412-04.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mail-archive.com/libvir-list%40redhat.com/msg83332.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.