PT-2018-7151 · Libvirt+1 · Libvirt+1

Published

2017-03-09

Updated

2024-06-15

CVE-2017-2635

CVSS v3.1

7.7

High

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: libvirt versions 2.5.0 through 3.0.0

Description: A NULL pointer deference flaw was found in the way libvirt handled empty drives. This issue could allow a remote authenticated attacker to crash the libvirtd daemon, resulting in a denial of service.

Recommendations: For libvirt versions 2.5.0 through 3.0.0, update to a version that contains a fix for this issue to prevent potential denial of service attacks.

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2017-1262

CVE-2017-2635

OPENSUSE-SU-2024:11008-1

Affected Products

Alt Linux

Libvirt

PT-2018-7151 · Libvirt+1 · Libvirt+1

CVE-2017-2635

Weakness Enumeration

Related Identifiers

Affected Products

References · 31