Libvirt · Libvirt · CVE-2018-1064
**Name of the Vulnerable Software and Affected Versions**
libvirt versions prior to 4.2.0-rc1
**Description**
The issue is related to a resource exhaustion problem due to an incomplete fix that affects QEMU monitor and is also triggered via QEMU guest agent. It is associated with an error that leads to excessive memory consumption when handling a large stream of QEMU data. This could allow a remote attacker to cause a denial of service.
**Recommendations**
For libvirt versions prior to 4.2.0-rc1, update to version 4.2.0-rc1 or later to resolve the issue.