CVE-2012-3445
EPSS 1.3%發布日:2012/8/7修改日:2026/4/28
描述
The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers an out-of-bounds read or a free of an invalid pointer.
受影響套件(1)
- Debian/libvirtfrom 0, < 0.9.12-4