CVE-2013-7336

Name of the Vulnerable Software and Affected Versions libvirt versions prior to 1.1.3

Description The issue arises from the qemuMigrationWaitForSpice function in libvirt, which fails to properly enter a monitor during seamless SPICE migration. This allows local users to cause a denial of service by triggering a NULL pointer dereference and subsequent libvirtd crash. The crash occurs when the domblkstat function is called simultaneously with the qemuMonitorGetSpiceMigrationStatus function.

Recommendations For versions prior to 1.1.3, update to version 1.1.3 or later to resolve the issue.