The virDomainListPopulate function in conf/domain_conf.c in libvirt before 1.2.9 does not clean up the lock on the list of domains, which allows remote attackers to cause a denial of service (deadlock) via a NULL value in the second parameter in the virConnectListAllDomains API command.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libvirt | Libvirt | 1.2.5 | 1.2.5 |
| Libvirt | Libvirt | 1.2.4 | 1.2.4 |
| Libvirt | Libvirt | 1.2.7 | 1.2.7 |
| Libvirt | Libvirt | 1.2.1 | 1.2.1 |
| Libvirt | Libvirt | 1.2.2 | 1.2.2 |
| Libvirt | Libvirt | 1.2.6 | 1.2.6 |
| Libvirt | Libvirt | 1.2.0 | 1.2.0 |
| Libvirt | Libvirt | * | 1.2.8 |
| Libvirt | Libvirt | 1.2.3 | 1.2.3 |
| Red Hat Enterprise Linux 6 | RedHat | libvirt-0:0.10.2-46.el6_6.2 | * |
| Red Hat Enterprise Linux 7 | RedHat | libvirt-0:1.1.1-29.el7_0.3 | * |
| Libvirt | Ubuntu | devel | * |
| Libvirt | Ubuntu | trusty | * |
| Libvirt | Ubuntu | trusty/esm | * |
| Libvirt | Ubuntu | utopic | * |