| Max CVSS | 6.8 | Min CVSS | 3.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-6457 | 5.2 |
The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt before 1.2.1 does not properly initialize the nodemap, which allows local users to cause a denial of service (invalid free operation and crash) or possibl
|
03-01-2015 - 02:21 | 24-01-2014 - 18:55 | |
| CVE-2013-6458 | 6.8 |
Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote rea
|
03-01-2015 - 02:19 | 24-01-2014 - 18:55 | |
| CVE-2014-0028 | 4.3 |
libvirt 1.1.1 through 1.2.0 allows context-dependent attackers to bypass the domain:getattr and connect:search_domains restrictions in ACLs and obtain sensitive domain object information via a request to the (1) virConnectDomainEventRegister and (2)
|
03-01-2015 - 02:08 | 24-01-2014 - 18:55 | |
| CVE-2014-1447 | 3.3 |
Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of service (libvirtd crash) by closing a connection before a keepalive response is sent.
|
03-01-2015 - 01:44 | 24-01-2014 - 18:55 |