Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to cause a denial of service (daemon crash) via a cpu count request, as demonstrated by the "virsh vcpucount dom --guest" command.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat libvirt 远程提权漏洞
Vulnerability Description
Red Hat libvirt是美国红帽(Red Hat)公司的一个用于实现Linux虚拟化功能的Linux API,它支持各种Hypervisor,包括Xen和KVM,以及QEMU和用于其他操作系统的一些虚拟产品。 libvirt 1.0.6至1.1.0版本中的qemu/qemu_agent.c文件中的‘qemuAgentGetVCPUs’函数中存在双重释放漏洞。远程攻击者可借助CPU计数请求利用该漏洞造成拒绝服务(守护进程崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A