CVE-2013-2124

Exploit

EPSS 0.91%
Published 27.05.2014 14:55:06
Last modified 12.04.2025 10:46:40
Source secalert@redhat.com
Teams watchlist Login
Open Login

Double free vulnerability in inspect-fs.c in LibguestFS 1.20.x before 1.20.7, 1.21.x, 1.22.0, and 1.23.0 allows remote attackers to cause a denial of service (crash) via empty guest files.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Libguestfs ≫ Libguestfs Version1.20.0

Libguestfs ≫ Libguestfs Version1.20.1

Libguestfs ≫ Libguestfs Version1.20.2

Libguestfs ≫ Libguestfs Version1.20.3

Libguestfs ≫ Libguestfs Version1.20.4

Libguestfs ≫ Libguestfs Version1.20.5

Libguestfs ≫ Libguestfs Version1.20.6

Libguestfs ≫ Libguestfs Version1.21.1

Libguestfs ≫ Libguestfs Version1.21.2

Libguestfs ≫ Libguestfs Version1.21.3

Libguestfs ≫ Libguestfs Version1.21.4

Libguestfs ≫ Libguestfs Version1.21.5

Libguestfs ≫ Libguestfs Version1.21.6

Libguestfs ≫ Libguestfs Version1.21.7

Libguestfs ≫ Libguestfs Version1.21.8

Libguestfs ≫ Libguestfs Version1.21.9

Libguestfs ≫ Libguestfs Version1.21.10

Libguestfs ≫ Libguestfs Version1.21.11

Libguestfs ≫ Libguestfs Version1.21.12

Libguestfs ≫ Libguestfs Version1.21.13

Libguestfs ≫ Libguestfs Version1.21.14

Libguestfs ≫ Libguestfs Version1.21.15

Libguestfs ≫ Libguestfs Version1.21.16

Libguestfs ≫ Libguestfs Version1.21.17

Libguestfs ≫ Libguestfs Version1.21.18

Libguestfs ≫ Libguestfs Version1.21.19

Libguestfs ≫ Libguestfs Version1.21.20

Libguestfs ≫ Libguestfs Version1.21.21

Libguestfs ≫ Libguestfs Version1.21.22

Libguestfs ≫ Libguestfs Version1.21.23

Libguestfs ≫ Libguestfs Version1.21.24

Libguestfs ≫ Libguestfs Version1.21.25

Libguestfs ≫ Libguestfs Version1.21.26

Libguestfs ≫ Libguestfs Version1.21.27

Libguestfs ≫ Libguestfs Version1.21.28

Libguestfs ≫ Libguestfs Version1.21.29

Libguestfs ≫ Libguestfs Version1.21.30

Libguestfs ≫ Libguestfs Version1.21.31

Libguestfs ≫ Libguestfs Version1.21.32

Libguestfs ≫ Libguestfs Version1.21.33

Libguestfs ≫ Libguestfs Version1.21.34

Libguestfs ≫ Libguestfs Version1.21.35

Libguestfs ≫ Libguestfs Version1.21.36

Libguestfs ≫ Libguestfs Version1.21.37

Libguestfs ≫ Libguestfs Version1.21.38

Libguestfs ≫ Libguestfs Version1.21.39

Libguestfs ≫ Libguestfs Version1.21.40

Libguestfs ≫ Libguestfs Version1.22.0

Libguestfs ≫ Libguestfs Version1.23.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.91%	0.748

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

http://osvdb.org/93724

http://seclists.org/oss-sec/2013/q2/431

Patch

http://www.securityfocus.com/bid/60205

https://exchange.xforce.ibmcloud.com/vulnerabilities/85145

https://github.com/libguestfs/libguestfs/commit/fa6a76050d82894365dfe32916903ef7fee3ffcd

Patch

Exploit

https://www.redhat.com/archives/libguestfs/2013-May/msg00079.html

Patch

https://www.redhat.com/archives/libguestfs/2013-May/msg00080.html

Patch

https://nvd.nist.gov/vuln/detail/CVE-2013-2124

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-2124

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-2124

EUVD