Red Hat · Libvirt · CVE-2013-7336
**Name of the Vulnerable Software and Affected Versions**
libvirt versions prior to 1.1.3
**Description**
The issue arises from the qemuMigrationWaitForSpice function in libvirt, which fails to properly enter a monitor during seamless SPICE migration. This allows local users to cause a denial of service by triggering a NULL pointer dereference and subsequent libvirtd crash. The crash occurs when the domblkstat function is called simultaneously with the qemuMonitorGetSpiceMigrationStatus function.
**Recommendations**
For versions prior to 1.1.3, update to version 1.1.3 or later to resolve the issue.