Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2013-0170
Description:Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.10.2.3, 0.9.11 before 0.9.11.9, and 0.9.6 before 0.9.6.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering certain errors during an RPC connection, which causes a message to be freed without being removed from the message queue.
Test IDs: 1.3.6.1.4.1.25623.1.0.865324   1.3.6.1.4.1.25623.1.0.870895   1.3.6.1.4.1.25623.1.0.881583   1.3.6.1.4.1.25623.1.0.850428   1.3.6.1.4.1.25623.1.0.850395   1.3.6.1.4.1.25623.1.0.123741   1.3.6.1.4.1.25623.1.1.4.2013.0320.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-0170
BugTraq ID: 57578
http://www.securityfocus.com/bid/57578
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098398.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098370.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098326.html
http://osvdb.org/89644
RedHat Security Advisories: RHSA-2013:0199
http://rhn.redhat.com/errata/RHSA-2013-0199.html
http://www.securitytracker.com/id/1028047
http://secunia.com/advisories/52001
http://secunia.com/advisories/52003
SuSE Security Announcement: SUSE-SU-2013:0320 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00016.html
SuSE Security Announcement: openSUSE-SU-2013:0274 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00001.html
SuSE Security Announcement: openSUSE-SU-2013:0275 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00002.html
http://www.ubuntu.com/usn/USN-1708-1
XForce ISS Database: libvirt-virnetmessagefree-code-exec(81552)
https://exchange.xforce.ibmcloud.com/vulnerabilities/81552




© 1998-2021 E-Soft Inc. All rights reserved.