CVE-2013-4239

libvirt 1.1.1 - Authenticated Denial of Service via virConnectListDefinedDomains API Function

Title source: llm
STIX 2.1

Description

The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the virConnectListDefinedDomains API function.

References (4)

Core 4
Core References
Exploit, Patch mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/08/12/12
Various Sources x_refsource_confirm
http://libvirt.org/news.html
Exploit, Patch x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=996241

Scores

EPSS 0.0197
EPSS Percentile 78.0%

Details

CWE
CWE-119
Status published
Products (1)
redhat/libvirt 1.1.1
Published Sep 30, 2013
Tracked Since Feb 18, 2026