Main Vulnerability Database SB2014020405

SB2014020405 - Race condition in libvirt (Alpine package)

Published: February 4, 2014

Security Bulletin ID SB2014020405

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Adjecent network

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Race condition (CVE-ID: CVE-2013-6458)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.

Remediation

Install update from vendor's website.

References

https://git.alpinelinux.org/aports/commit/?id=89b40d15ab00cb65885e7f5e1f7336ea20ab80de
https://git.alpinelinux.org/aports/commit/?id=b5fc277743e9099821e70da285fdb56d5c9d5e79