ID CVE-2013-6458
Summary Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.
References
Vulnerable Configurations
  • cpe:2.3:a:redhat:libvirt:0.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.9:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.9:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.6.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.6.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.6.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.6.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.6.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.6.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.7.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.7.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.8.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.8.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.6.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.6.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.9:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.9:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.12:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.12:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.13:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.13:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:-:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:-:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.10:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.10:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.1.11:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.1.11:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.3:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.3:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.3:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.3:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.3:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.3:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.4:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.4:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.4:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.4:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.4:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.4:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.5:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.5:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.5:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.5:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.5:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.5:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.5:rc3:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.5:rc3:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.6.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.6.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.7:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.7:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.8:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.8:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.8:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.8:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.8:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.8:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.9:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.9:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.9:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.9:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.10:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.10:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.10:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.10:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.10:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.10:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.9:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.9:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.11.10:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.11.10:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.12:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.12:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.12:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.12:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.12:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.12:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.12.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.12.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.12.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.12.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.12.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.13:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.13:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.13:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.13:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.9.13:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.9.13:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.0:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.0:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.0:rc0:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.0:rc0:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:0.10.2:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:0.10.2:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.0:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.0:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.0:rc3:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.0:rc3:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.1:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.1:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.1:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.1:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.2:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.2:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.2:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.2:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.3:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.3:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.3:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.3:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.3:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.3:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.4:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.4:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.4:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.4:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.4:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.4:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.5.9:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.5.9:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.6:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.6:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.6:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.6:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.0.6:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.0.6:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.0:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.0:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.1:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.1:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.1:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.1:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.2:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.2:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.2:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.2:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.4:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.4:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.5:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.5:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.6:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.6:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.7:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.7:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.8:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.3.9:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.3.9:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.4:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.4:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.4:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.4:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.1.4:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.1.4:rc2:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.2.0:-:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.2.0:-:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.2.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.2.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:redhat:libvirt:1.2.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:redhat:libvirt:1.2.0:rc2:*:*:*:*:*:*
CVSS
Base: 6.8 (as of 03-01-2015 - 02:19)
Impact:
Exploitability:
CWE CWE-362
CAPEC
  • Leveraging Race Conditions
    The adversary targets a race condition occurring when multiple processes access and manipulate the same resource concurrently, and the outcome of the execution depends on the particular order in which the access takes place. The adversary can leverage a race condition by "running the race", modifying the resource and modifying the normal execution flow. For instance, a race condition can occur while accessing a file: the adversary can trick the system by replacing the original file with his version and cause the system to read the malicious file.
  • Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions
    This attack targets a race condition occurring between the time of check (state) for a resource and the time of use of a resource. A typical example is file access. The adversary can leverage a file access race condition by "running the race", meaning that they would modify the resource between the first time the target program accesses the file and the time the target program uses the file. During that period of time, the adversary could replace or modify the file, causing the application to behave unexpectedly.
Access
VectorComplexityAuthentication
ADJACENT_NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:A/AC:H/Au:N/C:C/I:C/A:C
redhat via4
advisories
rhsa
id RHSA-2014:0103
rpms
  • libvirt-0:0.10.2-29.el6_5.3
  • libvirt-client-0:0.10.2-29.el6_5.3
  • libvirt-debuginfo-0:0.10.2-29.el6_5.3
  • libvirt-devel-0:0.10.2-29.el6_5.3
  • libvirt-lock-sanlock-0:0.10.2-29.el6_5.3
  • libvirt-python-0:0.10.2-29.el6_5.3
refmap via4
confirm
debian DSA-2846
gentoo GLSA-201412-04
secunia
  • 56186
  • 56446
  • 60895
suse
  • openSUSE-SU-2014:0268
  • openSUSE-SU-2014:0270
ubuntu USN-2093-1
Last major update 03-01-2015 - 02:19
Published 24-01-2014 - 18:55
Last modified 03-01-2015 - 02:19
Back to Top