CVE-2012-4423

EPSS 2.9%

Published: 11/19/2012Modified: 4/28/2026

Description

The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and segmentation fault) via an RPC call with (1) an event as the RPC number or (2) an RPC number whose value is in a "gap" in the RPC dispatch table.

Affected packages (1)

Debian/libvirtfrom 0, < 0.9.12-5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-4423