The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 up to and including 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash) via a guest in the shutdown status, as demonstrated by the "virsh memtune" command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat libvirt 1.0.5.4 |
||
redhat libvirt 1.0.5.3 |
||
redhat libvirt 1.0.5 |
||
redhat libvirt 1.0.5.6 |
||
redhat libvirt 1.2.0 |
||
redhat libvirt 1.1.2 |
||
redhat libvirt 1.1.4 |
||
redhat libvirt 1.0.6 |
||
redhat libvirt 1.1.1 |
||
redhat libvirt 1.0.5.1 |
||
redhat libvirt 1.0.5.2 |
||
redhat libvirt 1.0.5.5 |
||
redhat libvirt 1.1.0 |
||
redhat libvirt 1.1.3 |