Tim Shearer

1 exploit Active since May 2023
CVE-2023-2700 WRITEUP MEDIUM WRITEUP
libvirt - Use-After-Free in SR-IOV PCI Device Capability Query
A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct's g_autoptr cleanup.
CVSS 5.5