2.1

CVE-2014-8136

The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MageiaMageia Version4.0
RedhatLibvirt Version-
CanonicalUbuntu Linux Version12.04 SwEditionlts
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version15.04
CanonicalUbuntu Linux Version15.10
OpensuseOpensuse Version13.1
OpensuseOpensuse Version13.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.39% 0.31
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-updates/2015-01/msg00005.html
Third Party Advisory
http://secunia.com/advisories/61111
http://advisories.mageia.org/MGASA-2015-0002.html
Third Party Advisory
http://libvirt.org/git/?p=libvirt.git%3Ba=commit%3Bh=2bdcd29c713dfedd813c89f56ae98f6f3898313d
http://lists.opensuse.org/opensuse-updates/2015-01/msg00003.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0323.html
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2015:023
Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2015:070
Broken Link
http://www.ubuntu.com/usn/USN-2867-1
Third Party Advisory