CVE-2012-4423

Name of the Vulnerable Software and Affected Versions libvirt versions prior to 0.10.2

Description The issue affects the libvirt package in the openSUSE operating system, potentially leading to breaches of confidentiality, integrity, and availability of protected information. Exploitation can occur remotely. The virNetServerProgramDispatchCall function in libvirt is vulnerable to a denial of service (NULL pointer dereference and segmentation fault) via an RPC call with specific conditions.

Recommendations For versions prior to 0.10.2, update to version 0.10.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the virNetServerProgramDispatchCall function to minimize the risk of exploitation.