The virStorageVolCreateXML API in libvirt 1.2.14 up to and including 1.2.19 allows remote authenticated users with a read-write connection to cause a denial of service (libvirtd crash) by triggering a failed unlink after creating a volume on a root_squash NFS pool.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat libvirt 1.2.18 |
||
redhat libvirt 1.2.19 |
||
redhat libvirt 1.2.15 |
||
redhat libvirt 1.2.17 |
||
redhat libvirt 1.2.14 |
||
redhat libvirt 1.2.16 |
||
canonical ubuntu linux 15.10 |
||
canonical ubuntu linux 15.04 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |