Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 up to and including 1.1.0 allows remote malicious users to cause a denial of service (daemon crash) via a cpu count request, as demonstrated by the "virsh vcpucount dom --guest" command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat libvirt 1.0.6 |
||
redhat libvirt 1.1.0 |