CVE Vulnerabilities

CVE-2013-4399

Published: Dec 12, 2014 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The remoteClientFreeFunc function in daemon/remote.c in libvirt before 1.1.3, when ACLs are used, does not set an identity, which causes event handler removal to be denied and remote attackers to cause a denial of service (use-after-free and crash) by registering an event handler and then closing the connection.

Affected Software

Name Vendor Start Version End Version
Libvirt Redhat 0.4.1 0.4.1
Libvirt Redhat 0.9.13 0.9.13
Libvirt Redhat 0.8.6 0.8.6
Libvirt Redhat 1.0.5.4 1.0.5.4
Libvirt Redhat * 1.1.3
Libvirt Redhat 0.9.6.3 0.9.6.3
Libvirt Redhat 0.9.2 0.9.2
Libvirt Redhat 0.4.5 0.4.5
Libvirt Redhat 0.7.5 0.7.5
Libvirt Redhat 0.0.6 0.0.6
Libvirt Redhat 0.9.5 0.9.5
Libvirt Redhat 1.0.5.3 1.0.5.3
Libvirt Redhat 0.5.0 0.5.0
Libvirt Redhat 0.10.2.2 0.10.2.2
Libvirt Redhat 0.9.11.3 0.9.11.3
Libvirt Redhat 0.7.2 0.7.2
Libvirt Redhat 0.1.1 0.1.1
Libvirt Redhat 0.0.3 0.0.3
Libvirt Redhat 0.1.7 0.1.7
Libvirt Redhat 0.0.1 0.0.1
Libvirt Redhat 1.0.5 1.0.5
Libvirt Redhat 0.2.0 0.2.0
Libvirt Redhat 0.9.11.8 0.9.11.8
Libvirt Redhat 0.7.4 0.7.4
Libvirt Redhat 0.9.10 0.9.10
Libvirt Redhat 1.0.5.6 1.0.5.6
Libvirt Redhat 0.4.4 0.4.4
Libvirt Redhat 0.3.3 0.3.3
Libvirt Redhat 0.0.2 0.0.2
Libvirt Redhat 0.1.8 0.1.8
Libvirt Redhat 0.3.0 0.3.0
Libvirt Redhat 0.9.8 0.9.8
Libvirt Redhat 0.10.2.7 0.10.2.7
Libvirt Redhat 0.1.3 0.1.3
Libvirt Redhat 0.1.9 0.1.9
Libvirt Redhat 0.4.2 0.4.2
Libvirt Redhat 0.9.9 0.9.9
Libvirt Redhat 0.9.6.2 0.9.6.2
Libvirt Redhat 0.8.5 0.8.5
Libvirt Redhat 1.0.4 1.0.4
Libvirt Redhat 0.8.7 0.8.7
Libvirt Redhat 0.7.7 0.7.7
Libvirt Redhat 0.6.4 0.6.4
Libvirt Redhat 0.3.1 0.3.1
Libvirt Redhat 0.9.3 0.9.3
Libvirt Redhat 0.9.6.1 0.9.6.1
Libvirt Redhat 0.1.6 0.1.6
Libvirt Redhat 0.9.6 0.9.6
Libvirt Redhat 0.9.0 0.9.0
Libvirt Redhat 0.10.2.4 0.10.2.4
Libvirt Redhat 0.6.5 0.6.5
Libvirt Redhat 0.9.11.2 0.9.11.2
Libvirt Redhat 0.10.2.1 0.10.2.1
Libvirt Redhat 1.0.1 1.0.1
Libvirt Redhat 0.8.2 0.8.2
Libvirt Redhat 0.10.2.6 0.10.2.6
Libvirt Redhat 0.8.1 0.8.1
Libvirt Redhat 0.9.12 0.9.12
Libvirt Redhat 0.2.2 0.2.2
Libvirt Redhat 0.10.2.3 0.10.2.3
Libvirt Redhat 1.1.2 1.1.2
Libvirt Redhat 0.8.3 0.8.3
Libvirt Redhat 0.7.1 0.7.1
Libvirt Redhat 0.2.3 0.2.3
Libvirt Redhat 0.0.4 0.0.4
Libvirt Redhat 0.1.0 0.1.0
Libvirt Redhat 0.9.11.1 0.9.11.1
Libvirt Redhat 0.6.2 0.6.2
Libvirt Redhat 0.8.8 0.8.8
Libvirt Redhat 1.0.6 1.0.6
Libvirt Redhat 0.6.3 0.6.3
Libvirt Redhat 1.0.2 1.0.2
Libvirt Redhat 1.1.1 1.1.1
Libvirt Redhat 0.10.1 0.10.1
Libvirt Redhat 0.9.11.6 0.9.11.6
Libvirt Redhat 0.4.3 0.4.3
Libvirt Redhat 1.0.5.1 1.0.5.1
Libvirt Redhat 0.5.1 0.5.1
Libvirt Redhat 0.10.2 0.10.2
Libvirt Redhat 1.0.5.2 1.0.5.2
Libvirt Redhat 0.9.11.7 0.9.11.7
Libvirt Redhat 1.0.3 1.0.3
Libvirt Redhat 0.7.6 0.7.6
Libvirt Redhat 0.10.0 0.10.0
Libvirt Redhat 0.7.3 0.7.3
Libvirt Redhat 0.6.1 0.6.1
Libvirt Redhat 0.1.4 0.1.4
Libvirt Redhat 0.8.4 0.8.4
Libvirt Redhat 0.9.11.5 0.9.11.5
Libvirt Redhat 0.9.4 0.9.4
Libvirt Redhat 0.9.1 0.9.1
Libvirt Redhat 0.4.6 0.4.6
Libvirt Redhat 0.10.2.5 0.10.2.5
Libvirt Redhat 0.10.2.8 0.10.2.8
Libvirt Redhat 0.1.5 0.1.5
Libvirt Redhat 0.9.7 0.9.7
Libvirt Redhat 1.0.5.5 1.0.5.5
Libvirt Redhat 0.7.0 0.7.0
Libvirt Redhat 0.4.0 0.4.0
Libvirt Redhat 0.0.5 0.0.5
Libvirt Redhat 0.2.1 0.2.1
Libvirt Redhat 1.0.0 1.0.0
Libvirt Redhat 0.6.0 0.6.0
Libvirt Redhat 1.1.0 1.1.0
Libvirt Redhat 0.9.11 0.9.11
Libvirt Redhat 0.8.0 0.8.0
Libvirt Redhat 0.9.11.4 0.9.11.4
Libvirt Redhat 0.3.2 0.3.2

References