A NULL pointer dereference was found in the libvirt API responsible introduced in upstream version 3.10.0, and fixed in libvirt 6.0.0, for fetching a storage pool based on its target path. In more detail, this flaw affects storage pools created without a target path such as network-based pools like gluster and RBD. Unprivileged users with a read-only connection could abuse this flaw to crash the libvirt daemon, resulting in a potential denial of service.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libvirt | Redhat | 3.10.0 (including) | 6.0.0 (excluding) |
| Red Hat Enterprise Linux 7 | RedHat | libvirt-0:4.5.0-36.el7 | * |
| Red Hat Enterprise Linux 8 | RedHat | virt-devel:rhel-8030020200909014558.30b713e6 | * |
| Red Hat Enterprise Linux 8 | RedHat | virt:rhel-8030020200909014558.30b713e6 | * |
| Libvirt | Ubuntu | bionic | * |
| Libvirt | Ubuntu | eoan | * |
| Libvirt | Ubuntu | trusty | * |
| Libvirt | Ubuntu | upstream | * |