6.8
CVE-2013-0170
- EPSS 5.77%
- Veröffentlicht 08.02.2013 20:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.10.2.3, 0.9.11 before 0.9.11.9, and 0.9.6 before 0.9.6.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering certain errors during an RPC connection, which causes a message to be freed without being removed from the message queue.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Suse ≫ Linux Enterprise Desktop Version11 Updatesp2
Suse ≫ Linux Enterprise Server Version11 Updatesp2 SwPlatform-
Suse ≫ Linux Enterprise Software Development Kit Version11 Updatesp2
Fedoraproject ≫ Fedora Version16
Fedoraproject ≫ Fedora Version17
Fedoraproject ≫ Fedora Version18
Redhat ≫ Enterprise Linux Desktop Version6.0
Redhat ≫ Enterprise Linux Eus Version6.3
Redhat ≫ Enterprise Linux Server Version6.0
Redhat ≫ Enterprise Linux Workstation Version6.0
Canonical ≫ Ubuntu Linux Version12.04 SwEditionesm
Canonical ≫ Ubuntu Linux Version12.10
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.77% | 0.921 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
http://libvirt.org/news.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00001.html
http://www.ubuntu.com/usn/USN-1708-1
http://libvirt.org/git/?p=libvirt.git%3Ba=commit%3Bh=46532e3e8ed5f5a736a02f67d6c805492f9ca720
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098326.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098370.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098398.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00016.html
http://osvdb.org/89644
http://rhn.redhat.com/errata/RHSA-2013-0199.html
http://secunia.com/advisories/52001
http://secunia.com/advisories/52003
http://wiki.libvirt.org/page/Maintenance_Releases
http://www.securityfocus.com/bid/57578
http://www.securitytracker.com/id/1028047
https://bugzilla.redhat.com/show_bug.cgi?id=893450
https://exchange.xforce.ibmcloud.com/vulnerabilities/81552