|
|
|
|
| |
Credit:
The information has been provided by Petr Matousek.
|
| |
Vulnerable Systems:
* libvirt libvirt 0
Successfully exploiting this issue allow remote attackers to crash the application that uses the affected library, denying service to legitimate users. The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
A flaw was found in libvirtd's RPC call handling. An attacker able to establish a read-only connection to libvirtd could use this flaw to crash libvirtd by sending an RPC message that has an event as the RPC number, or an RPC number that falls into a gap in the RPC dispatch table. (CVE-2012-4423)
Patch Availability:
https://access.redhat.com/knowledge/articles/11258
CVE Information:
CVE-2012-4423
Disclosure Timeline:
Published: Sep 13 2012 12:00AM
Updated: Oct 17 2012 12:30PM
|
|
|
|
|
