CVE-2013-0170

Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.10.2.3, 0.9.11 before 0.9.11.9, and 0.9.6 before 0.9.6.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering certain errors during an RPC connection, which causes a message to be freed without being removed from the message queue.
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
redhatlibvirt
0.9.6 ≤
𝑥
< 0.9.6.4
redhatlibvirt
0.9.11 ≤
𝑥
< 0.9.11.9
redhatlibvirt
0.10.2 ≤
𝑥
< 0.10.2.3
redhatlibvirt
1.0.0 ≤
𝑥
< 1.0.2
opensuseopensuse
12.1
opensuseopensuse
12.2
redhatenterprise_linux_desktop
6.0
redhatenterprise_linux_eus
6.3
redhatenterprise_linux_server
6.0
redhatenterprise_linux_workstation
6.0
canonicalubuntu_linux
12.04
canonicalubuntu_linux
12.10
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libvirt
bullseye
7.0.0-3+deb11u3
fixed
squeeze
not-affected
bookworm
9.0.0-4+deb12u1
fixed
sid
10.9.0-1
fixed
trixie
10.9.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libvirt
quantal
Fixed 0.9.13-0ubuntu12.2
released
precise
Fixed 0.9.8-2ubuntu17.7
released
oneiric
not-affected
lucid
not-affected
hardy
ignored
References