CVE-2013-4239
libvirt 1.1.1 - Authenticated Denial of Service via virConnectListDefinedDomains API Function
Title source: llmDescription
The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the virConnectListDefinedDomains API function.
References (4)
Core 4
Core References
Exploit, Patch mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/08/12/12
Various Sources x_refsource_confirm
http://libvirt.org/news.html
Exploit, Patch x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=996241
Various Sources x_refsource_confirm
http://libvirt.org/git/?p=libvirt.git%3Ba=commitdiff%3Bh=0e671a16
Scores
EPSS
0.0197
EPSS Percentile
78.0%
Details
CWE
CWE-119
Status
published
Products (1)
redhat/libvirt
1.1.1
Published
Sep 30, 2013
Tracked Since
Feb 18, 2026