Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x prior to 1.0.2, 0.10.2 prior to 0.10.2.3, 0.9.11 prior to 0.9.11.9, and 0.9.6 prior to 0.9.6.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by triggering certain errors during an RPC connection, which causes a message to be freed without being removed from the message queue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat libvirt |
||
suse linux enterprise desktop 11 |
||
opensuse opensuse 12.2 |
||
opensuse opensuse 12.1 |
||
suse linux enterprise software development kit 11 |
||
suse linux enterprise server 11 |
||
fedoraproject fedora 17 |
||
fedoraproject fedora 16 |
||
fedoraproject fedora 18 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux eus 6.3 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |